| Titolo | DCN DCME-720 9.1.5.11 Command Injection |
|---|
| Descrizione | The DCME-720 multi-core egress gateway utilizes a high-performance multi-core processor and a dedicated ASIC switching chip. It is a next-generation, high-performance Internet egress gateway designed to meet the needs of large user volumes, high traffic volumes, and diverse service types.
A command injection vulnerability exists in its web management backend, allowing attackers to execute arbitrary code and control the device.
Firmware download address: https://www.dcnetworks.com.cn/ruanjian.html?title=dcme-720 |
|---|
| Fonte | ⚠️ https://github.com/lin-3-start/lin-cve/blob/main/DCME-720/DCME-720.md |
|---|
| Utente | QMSSDXN (UID 88719) |
|---|
| Sottomissione | 08/08/2025 09:56 (11 mesi fa) |
|---|
| Moderazione | 23/08/2025 17:16 (15 days later) |
|---|
| Stato | Accettato |
|---|
| Voce VulDB | 321220 [DCN DCME-720 9.1.5.11 Web Management Backend ip_block.php ip escalationi di privilegi] |
|---|
| Punti | 20 |
|---|