What is CVE-2022-50788?

CVE-2022-50788 is a high-severity vulnerability in Kantar Media Wm2, classified under CWE-548. CVSS score: 7.5/10. Published 2025-12-30.

How severe is CVE-2022-50788?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Kantar Media Wm2

CVE-2022-50788

SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains an information disclosure vulnerability that allows unauthenticated attackers to access sensitive log files. Attackers can directly browse the /log directory to retrieve system and sensitive inf…

EPSS: 0.004 (60.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Kantar Media Wm2 — versions 1.11
Sound4 Ltd. Bigvoice2 — versions 1.30
Sound4 Ltd. Bigvoice4 — versions 1.2
Sound4 Ltd. Impact/pulse Eco — versions 1.16
Sound4 Ltd. Impact/pulse/first — versions Version 2: 1.1/2.15
Sound4 Ltd. Stream — versions 1.1/2.4.29

Weakness classification (CWE)

CWE-548

References

Zero Science Lab Disclosure (ZSL-2022-5732) (third-party-advisory)
Packet Storm Security Exploit Details (exploit)
IBM X-Force Vulnerability Exchange Entry (vdb-entry)
SOUND4 Product Homepage (product)
VulnCheck Advisory: SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Information Disclosure via Log Directory (third-party-advisory)

Frequently asked questions

What is CVE-2022-50788?: CVE-2022-50788 is a high-severity vulnerability in Kantar Media Wm2, classified under CWE-548. CVSS score: 7.5/10. Published 2025-12-30.
How severe is CVE-2022-50788?: High severity. CVSS v3 base score is 7.5 out of 10.