CVE-2025-4536 MEDIUM

CVE-2025-4536: Gosuncn Technology Group Audio-Visual Integrated Management Platform listByPage information disclosure

Vendor Gosuncn Technology Group

Product Audio-Visual Integrated Management Platform

Weakness CWE-200 · Info exposure

Published May 11, 2025

Last update May 12, 2025

View on NVD All CVEs

CVSS base score

6.9/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

A vulnerability has been found in Gosuncn Technology Group Audio-Visual Integrated Management Platform 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /sysmgr/user/listByPage. The manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Key dates

02Disclosure timeline

May 11, 2025 CVE published

May 12, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-4536

Related vulnerabilities

Identifiers

CVE CVE-2025-4536

CWE CWE-200

CVSS 6.9 / MEDIUM

Affected versions