CVE-2024-52777

dcme-720_firmware vulnerability - dcnetworks

Critical CVSS Score: 9.8 Published: 2024-11-29

Description

DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L, <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/system/basic/license_update.php.

Affected Systems

Vendor	dcnetworks
Product	dcme-720_firmware
Affected Versions	through 9.1.5.11; -
CWE ID	N/A

Mitigation

Apply the latest security patches from the vendor, restrict network exposure where applicable, and monitor for exploitation attempts.

Fix Instructions

Refer to the vendor advisory and apply the latest security updates. See references for detailed patching instructions.

References

https://ba1100n.tech/%E6%BC%8F%E6%B4%9E%E6%8A%A5%E5%91%8A/dc...

Risk Assessment

CVSS: 9.8/10

Exploit Available	Unknown
Patch Available	Unknown

Need Help Patching?

Our security team can help assess and remediate this vulnerability in your environment.

Get Help

Related Vulnerabilities

critical

CVE-2024-52782

dcme-720_firmware...

critical

CVE-2024-52781

dcme-720_firmware...

critical

CVE-2024-52780

dcme-720_firmware...

critical

CVE-2024-52779

dcme-720_firmware...

critical

CVE-2024-52778

dcme-720_firmware...

Stay Ahead of Threats

Subscribe to our vulnerability feed and get instant alerts when new CVEs affect your systems.

Start Monitoring