Information Disclosure in Gosuncn Technology Group Audio-Visual Management Platform
CVE-2025-4535

6.9MEDIUM

Key Information:

Vendor: Gosuncn Technology Group
Status: Audio-visual Integrated Management Platform
Vendor: CVE Published:; 11 May 2025

🔔 Create Gosuncn Technology Group Vulnerability Alert

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2025-4535?

A vulnerability has been identified in the configuration file handler of Gosuncn Technology Group's Audio-Visual Integrated Management Platform version 4.0. This issue resides in an unknown function within the /config/config.properties file, allowing unauthorized information disclosure. The vulnerability can be exploited remotely, putting sensitive data at risk. The issue has been publicly disclosed, yet the vendor has not responded to any communication regarding this critical security flaw.

Affected Version(s)

Audio-Visual Integrated Management Platform 4.0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-4535 - Proof of Concept