{
  "schema_version": "1.4.0",
  "id": "GHSA-7fcq-fm2j-q226",
  "modified": "2025-09-09T15:31:19Z",
  "published": "2025-09-09T15:31:19Z",
  "aliases": [
    "CVE-2025-47416"
  ],
  "details": "A vulnerability exists in the ConsoleFindCommandMatchList function in libsymproc. so imported by ctpd that may lead to unauthorized execution of an attacker-defined file that gets prioritized by the ConsoleFindCommandMatchList.\n\n\n\nA third-party researcher discovered that the ConsoleFindCommandMatchList enumerates the /dev/shm/symproc/c directory in alphabetical order to identify console commands. Permission levels are inferred from the integer values present in each command's file name. \n\n\n\nConfirmed Affected Hardware: TSW-760, TSW-1060 \n\n\n\nConfirmed Affected Firmware: 3.002.1061 \n\n\n\nFixed Firmware: no fixed released (product is discontinued and end of life)\n\n\n\n \n\n\n\nFor x70  \n\n\n\nThe Affected Firmware:- 3.000.0110.001  and versions below \n\n\n\nThe Fixed Firmware:- 3.001.0031.001",
  "severity": [
    {
      "type": "CVSS_V4",
      "score": "CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X"
    }
  ],
  "affected": [],
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-47416"
    },
    {
      "type": "WEB",
      "url": "https://security.crestron.com"
    },
    {
      "type": "WEB",
      "url": "https://www.crestron.com/Software-Firmware/Firmware/Touchpanels/TS-770-TS-1070-TSS-770-TSS-1070-TSW-570/3-002-0040-001"
    }
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-697"
    ],
    "severity": "MODERATE",
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-09-09T14:15:45Z"
  }
}