CVE-2025-4535 is an information disclosure vulnerability identified in version 4.0 of the Gosuncn Technology Group Audio-Visual Integrated Management Platform. The vulnerability resides in an unspecified function related to the handling of the configuration file located at /config/config.properties within the Configuration File Handler component. Due to improper access controls or insufficient validation, an attacker can remotely exploit this flaw without requiring any authentication or user interaction. The exploitation allows unauthorized disclosure of potentially sensitive configuration data, which may include system settings, credentials, or other operational parameters. The vulnerability has been publicly disclosed, and although no known exploits have been observed in the wild yet, the availability of exploit information increases the risk of future attacks. The vendor has been contacted but has not provided any response or patch at the time of publication. The CVSS v4.0 base score is 6.9, reflecting a medium severity level, with attack vector network, low attack complexity, no privileges or user interaction required, and limited impact confined to confidentiality (information disclosure) without affecting integrity or availability.

For European organizations using Gosuncn Technology Group's Audio-Visual Integrated Management Platform 4.0, this vulnerability poses a significant risk of unauthorized disclosure of sensitive configuration information. Such information could be leveraged by attackers to gain deeper access into the affected systems, facilitate lateral movement, or prepare for more damaging attacks such as privilege escalation or data exfiltration. Given the platform's role in managing audio-visual infrastructure, compromised configuration data might also expose operational details or credentials related to physical security systems, conference rooms, or communication networks. This could lead to privacy violations, disruption of business operations, or espionage activities. The remote and unauthenticated nature of the exploit increases the threat surface, especially for organizations with internet-facing instances of this platform. The lack of vendor response and absence of patches further exacerbate the risk, leaving affected entities exposed until mitigations or updates are implemented.

1. Immediate network-level controls should be implemented to restrict access to the Audio-Visual Integrated Management Platform, especially limiting exposure to the internet or untrusted networks via firewalls or VPNs. 2. Conduct thorough audits of the /config/config.properties file permissions and access controls to ensure that sensitive configuration files are not publicly accessible or readable by unauthorized users. 3. Employ network intrusion detection/prevention systems (IDS/IPS) to monitor for suspicious access patterns targeting the configuration file or related endpoints. 4. If possible, isolate the management platform within segmented network zones with strict access policies to minimize lateral movement risks. 5. Monitor vendor channels and security advisories closely for any forthcoming patches or updates and prioritize their deployment once available. 6. Consider implementing compensating controls such as application-layer gateways or reverse proxies that can enforce authentication and filter unauthorized requests until an official fix is released. 7. Review and rotate any credentials or secrets that might be stored in the configuration files to limit the impact of potential disclosure.