Lucene search
+L

86 matches found

OSV
OSV
added 2026/02/06 7:16 a.m.8 views

CVE-2026-2000

A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function applyconfig of the file /function/system/basic/bridgecfg.php of the component Web Management Backend. Performing a manipulation of the argument iplist results in command injection. The attack is possible to be...

7.2CVSS5.5AI score
Exploits0References4
NVD
NVD
added 2026/02/06 7:16 a.m.10 views

CVE-2026-2000

A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function applyconfig of the file /function/system/basic/bridgecfg.php of the component Web Management Backend. Performing a manipulation of the argument iplist results in command injection. The attack is possible to be...

7.2CVSS0.17152EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/06 6:32 a.m.5 views

CVE-2026-2000 DCN DCME-320 Web Management Backend bridge_cfg.php apply_config command injection

A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function applyconfig of the file /function/system/basic/bridgecfg.php of the component Web Management Backend. Performing a manipulation of the argument iplist results in command injection. The attack is possible to be...

5.8CVSS5.3AI score0.17152EPSS
Exploits1References4
EUVD
EUVD
added 2026/02/06 6:32 a.m.7 views

EUVD-2026-5693

A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function applyconfig of the file /function/system/basic/bridgecfg.php of the component Web Management Backend. Performing a manipulation of the argument iplist results in command injection. The attack is possible to be...

5.8CVSS5AI score0.17152EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/02/06 6:32 a.m.7 views

CVE-2026-2000

A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function applyconfig of the file /function/system/basic/bridgecfg.php of the component Web Management Backend. Performing a manipulation of the argument iplist results in command injection. The attack is possible to be...

5.8CVSS5.2AI score0.17152EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/02/06 6:32 a.m.16 views

CVE-2026-2000

CVE-2026-2000 affects DCN DCME-320 Web Management Backend. The vulnerability is in apply_config() handling of the ip_list argument in /function/system/basic/bridge_cfg.php, where manipulation leads to command injection. It is remotely exploitable and exploits have been published. Public reports (...

7.2CVSS5AI score0.17152EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.7 views

DCN DCME-320 命令注入漏洞

DCN DCME-320 is an Internet exchange gateway router developed by China's DCN Technology Co., Ltd. Versions of DCN DCME-320 prior to 20260121 contained a command injection vulnerability. This vulnerability stemmed from incorrect operations with the parameter iplist in the function applyconfig with...

7.2CVSS5.8AI score0.17152EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.10 views

PT-2026-6684

Name of the Vulnerable Software and Affected Versions DCN DCME-320 versions up to 20260121 Description A flaw exists in the Web Management Backend component of DCN DCME-320. Specifically, manipulating the ip list argument within the apply config function of the /function/system/basic/bridge cfg.p...

5.8CVSS5.4AI score0.17152EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.20 views

EUVD-2025-25740

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.09314EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/08/26 12:23 p.m.8 views

CVE-2025-9387

A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ipblock.php of the component Web Management Backend. Performing manipulation of the argument ip results in os command injection. It is possible to initiate...

9.8CVSS7.6AI score0.09314EPSS
Exploits1References1
OSV
OSV
added 2025/08/24 12:15 p.m.4 views

CVE-2025-9387

A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ipblock.php of the component Web Management Backend. Performing manipulation of the argument ip results in os command injection. It is possible to initiate...

9.8CVSS5.6AI score0.09314EPSS
Exploits1References5
NVD
NVD
added 2025/08/24 12:15 p.m.7 views

CVE-2025-9387

A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ipblock.php of the component Web Management Backend. Performing manipulation of the argument ip results in os command injection. It is possible to initiate...

9.8CVSS0.09314EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/08/24 12:2 p.m.16 views

CVE-2025-9387 DCN DCME-720 Web Management Backend ip_block.php os command injection

A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ipblock.php of the component Web Management Backend. Performing manipulation of the argument ip results in os command injection. It is possible to initiate...

6.5CVSS0.09314EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/08/24 12:2 p.m.6 views

CVE-2025-9387 DCN DCME-720 Web Management Backend ip_block.php os command injection

A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ipblock.php of the component Web Management Backend. Performing manipulation of the argument ip results in os command injection. It is possible to initiate...

6.5CVSS7.5AI score0.09314EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/08/24 12:0 a.m.16 views

PT-2025-34563 · Unknown · Dcn Dcme-720

Name of the Vulnerable Software and Affected Versions: DCN DCME-720 version 9.1.5.11 Description: A vulnerability exists in DCN DCME-720 version 9.1.5.11 related to OS command injection. The issue is located in the Web Management Backend component, specifically within the file...

6.5CVSS6.8AI score0.09314EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/08/24 12:0 a.m.10 views

DCN DCME-720 安全漏洞

DCN DCME-720 is a multi-core egress gateway from China Shenzhoukuntai DCN. A security vulnerability exists in DCN DCME-720 version 9.1.5.11, which originates from os command injection and could lead to remote attacks...

9.8CVSS6.8AI score0.09314EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/05/23 10:36 a.m.6 views

CVE-2024-52777

DCME-320 =7.4.12.90, DCME-520 =9.25.5.11, DCME-320-L, =9.3.5.26, and DCME-720 =9.1.5.11 are vulnerable to Remote Code Execution via /function/system/basic/licenseupdate.php...

9.8CVSS7.6AI score0.00731EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:35 a.m.8 views

CVE-2024-48659

An issue in DCME-320-L =9.3.2.114 allows a remote attacker to execute arbitrary code via the loguumount.php component...

9.8CVSS8AI score0.01099EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:45 a.m.6 views

CVE-2024-52778

DCME-320 =7.4.12.90, DCME-520 =9.25.5.11, DCME-320-L =9.3.5.26, and DCME-720 =9.1.5.11 are vulnerable to Remote Code Execution via /function/audit/newstatistics/monstathist.php...

9.8CVSS9.7AI score0.00692EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:45 a.m.7 views

CVE-2024-52781

DCME-320 =7.4.12.90, DCME-520 =9.25.5.11, DCME-320-L =9.3.5.26, and DCME-720 =9.1.5.11 are vulnerable to Remote Code Execution via /function/system/tool/traceroute.php...

9.8CVSS9.7AI score0.00692EPSS
Exploits0References1
Rows per page
Query Builder