Filtered by vendor Dcnglobal Subscriptions
Total 12 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-52782 1 Dcnglobal 4 Dcme-320-l Firmware, Dcme-320 Firmware, Dcme-520 Firmware and 1 more 2024-11-29 9.8 Critical
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/audit/newstatistics/mon_stat_hist_new.php.
CVE-2024-52781 1 Dcnglobal 4 Dcme-320-l Firmware, Dcme-320 Firmware, Dcme-520 Firmware and 1 more 2024-11-29 9.8 Critical
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/system/tool/traceroute.php.
CVE-2024-52780 1 Dcnglobal 4 Dcme-320-l Firmware, Dcme-320 Firmware, Dcme-520 Firmware and 1 more 2024-11-29 9.8 Critical
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/system/basic/mgmt_edit.php.
CVE-2024-52779 1 Dcnglobal 4 Dcme-320-l Firmware, Dcme-320 Firmware, Dcme-520 Firmware and 1 more 2024-11-29 9.8 Critical
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/audit/newstatistics/mon_stat_top10.php.
CVE-2024-52778 1 Dcnglobal 4 Dcme-320-l Firmware, Dcme-320 Firmware, Dcme-520 Firmware and 1 more 2024-11-29 9.8 Critical
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/audit/newstatistics/mon_stat_hist.php.
CVE-2024-52777 1 Dcnglobal 4 Dcme-320-l Firmware, Dcme-320 Firmware, Dcme-520 Firmware and 1 more 2024-11-29 9.8 Critical
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L, <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/system/basic/license_update.php.
CVE-2023-26802 1 Dcnglobal 2 Dcbi-netlog-lab, Dcbi-netlog-lab Firmware 2024-11-21 9.8 Critical
An issue in the component /network_config/nsg_masq.cgi of DCN (Digital China Networks) DCBI-Netlog-LAB v1.0 allows attackers to bypass authentication and execute arbitrary commands via a crafted request.
CVE-2022-25390 1 Dcnglobal 2 Dcme-520, Dcme-520 Firmware 2024-11-21 9.8 Critical
DCN Firewall DCME-520 was discovered to contain a remote command execution (RCE) vulnerability via the host parameter in the file /system/tool/ping.php.
CVE-2022-25389 1 Dcnglobal 2 Dcme-520, Dcme-520 Firmware 2024-11-21 7.5 High
DCN Firewall DCME-520 was discovered to contain an arbitrary file download vulnerability via the path parameter in the file /audit/log/log_management.php.
CVE-2021-42324 1 Dcnglobal 2 S4600-10p-si, S4600-10p-si Firmware 2024-11-21 7.4 High
An issue was discovered on DCN (Digital China Networks) S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to escape the sandbox environment and execute system commands as root via shell metacharacters in the capture command parameters. Command output will be shown on the Serial interface of the device. Exploitation requires both credentials and physical access.
CVE-2024-51115 1 Dcnglobal 1 Dcme-320 Firmware 2024-11-06 9.8 Critical
DCME-320 v7.4.12.90 was discovered to contain a command injection vulnerability.
CVE-2024-48659 1 Dcnglobal 1 Dcme-320-l Firmware 2024-10-23 9.8 Critical
An issue in DCME-320-L <=9.3.2.114 allows a remote attacker to execute arbitrary code via the log_u_umount.php component.