Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v.7.4.12.60 has a command execution vulnerability, which can be exploited to obtain device administrator privileges via the getVar function in the code/function/system/tool/ping.php file.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Beijing Digital China Cloud Technology |
|
No data.
No data.
References
History
Wed, 28 Aug 2024 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Beijing Digital China Cloud Technology
Beijing Digital China Cloud Technology dcme-320 |
|
| Weaknesses | CWE-77 | |
| CPEs | cpe:2.3:a:beijing_digital_china_cloud_technology:dcme-320:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Beijing Digital China Cloud Technology
Beijing Digital China Cloud Technology dcme-320 |
|
| Metrics |
cvssV3_1
|
Wed, 28 Aug 2024 17:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Beijing Digital China Cloud Technology Co., Ltd. DCME-320 v.7.4.12.60 has a command execution vulnerability, which can be exploited to obtain device administrator privileges via the getVar function in the code/function/system/tool/ping.php file. | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-08-28T00:00:00
Updated: 2024-08-28T18:36:15.152Z
Reserved: 2024-08-05T00:00:00
Link: CVE-2024-42905
Vulnrichment
Updated: 2024-08-28T18:34:37.622Z
NVD
Status : Awaiting Analysis
Published: 2024-08-28T18:15:09.630
Modified: 2024-08-29T13:25:27.537
Link: CVE-2024-42905
Redhat
No data.