DCME Devices Vulnerable to Remote Code Execution through traceroute.php
CVE-2024-52781

Currently unrated

Key Information:

Vendor: DCME
Vendor: CVE Published:; 29 November 2024

What is CVE-2024-52781?

DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/system/tool/traceroute.php.

References

https://ba1100n.tech/%E6%BC%8F%E6%B4%9E%E6%8A%A5%E5%91%8A...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 29, 2024
Vulnerability Reserved
Nov 15, 2024