CVE-2026-33560

🗓️ 26 Jun 2026 22:48:56Reported by icscertType

CVE-2026-33560 enables upload of any file to DMP-5000, enabling executables due to no validation.

Reporter	Title	Published	Views	Family All 4
ATTACKERKB	CVE-2026-33560	26 Jun 202622:48	–	attackerkb
Circl	CVE-2026-33560	25 Jun 202617:15	–	circl
Cvelist	CVE-2026-33560 Daktronics Controller Firmware Unrestricted Upload of File with Dangerous Type	26 Jun 202622:48	–	cvelist
NVD	CVE-2026-33560	26 Jun 202623:17	–	nvd

Vulners

Node

daktronics vfc-dmp-5000Range<8.117

daktronics dmp-5000Range<10.34

daktronics dmp-8000Range<10.34

[
  {
    "vendor": "Daktronics",
    "product": "VFC-DMP-5000",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v8.117.x.x",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v9.43.x.x",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v10.34.x.x",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Daktronics",
    "product": "DMP-5000",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v10.34.x.x",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v8.117.x.x",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v9.43.x.x",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "Daktronics",
    "product": "DMP-8000",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v10.34.x.x",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v8.117.x.x",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v9.43.x.x",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
cisa	www.cisa.gov/news-events/ics-advisories/icsa-26-176-04
github	www.github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-176-04.json

26 Jun 2026 23:17Current

5.9Medium risk

Vulners AI Score5.9

CVSS 3.17.1

CVSS 48.4

CWE-434