CVE-2025-66723

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

30/12/2025

Last modified:

30/12/2025

Description

inMusic Brands Engine DJ 4.3.0 suffers from Insecure Permissions due to exposed HTTP service in the Remote Library, which allows attackers to access all files and network paths.

Impact

References to Advisories, Solutions, and Tools

http://inmusic.com
https://github.com/audiopump/cve-2025-66723