CVE-2026-2000 - Vulnerability Details

- DCN DCME-320 Web Management Backend bridge_cfg.php apply_config command injection

Description

A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function apply_config of the file /function/system/basic/bridge_cfg.php of the component Web Management Backend. Performing a manipulation of the argument ip_list results in command injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published: 2026-02-06

Score: 5.1 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability allows an attacker to inject arbitrary shell commands by manipulating the ip_list argument in bridge_cfg.php. As a result, remote execution can compromise device confidentiality, integrity, and availability, potentially giving full control over the network equipment.

Affected Systems

DCN DCME‑320 devices running firmware versions up to 20260121.

Risk and Exploitability

With a CVSS score of 5.1, the vulnerability is classified as medium severity. An EPSS score of less than 1% indicates a low probability of exploitation in the near term. The vulnerability is not listed in CISA’s KEV catalog, but a publicly available exploit exists and the vendor has not released a patch, so the risk remains elevated.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

DCN

DCME-320

affected

Version	Status	Constraints
`20260121`	affected	—

Configuration 1 [-]

AND

cpe:2.3:o:dcnetworks:dcme-320_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:dcnetworks:dcme-320:-:*:*:*:*:*:*:*

No data.

Vendor	Product	Confidence	Versions
Dcn	Dcme-320	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the device firmware to a version that includes the command injection fix; if such firmware is not available, contact DCNetworks to request a patch immediately.
Restrict remote access to the Web Management Backend by limiting allowed IP addresses or applying firewall rules to block unauthorised connections.
Implement strict input validation or whitelist enforcement for the ip_list parameter, ensuring that any user-supplied data is sanitized before being used in system commands.

Generated by OpenCVE AI on April 18, 2026 at 13:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Multiple

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00286.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://github.com/physicszq/Routers/tree/main/Dcme
https://vuldb.com/?ctiid.344548
https://vuldb.com/?id.344548
https://vuldb.com/?submit.743455

History

Tue, 17 Feb 2026 19:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Dcnetworks Dcnetworks dcme-320 Dcnetworks dcme-320 Firmware
CPEs		cpe:2.3:h:dcnetworks:dcme-320:-:::::::* cpe:2.3:o:dcnetworks:dcme-320_firmware::::::::
Vendors & Products		Dcnetworks Dcnetworks dcme-320 Dcnetworks dcme-320 Firmware

Thu, 12 Feb 2026 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 09 Feb 2026 11:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Dcn Dcn dcme-320
Vendors & Products		Dcn Dcn dcme-320

Fri, 06 Feb 2026 07:00:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function apply_config of the file /function/system/basic/bridge_cfg.php of the component Web Management Backend. Performing a manipulation of the argument ip_list results in command injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title		DCN DCME-320 Web Management Backend bridge_cfg.php apply_config command injection
Weaknesses		CWE-74 CWE-77
References		https://github.com/physicszq/Routers/tree/main/Dcme https://vuldb.com/?ctiid.344548 https://vuldb.com/?id.344548 https://vuldb.com/?submit.743455
Metrics		cvssV2_0 `{'score': 5.8, 'vector': 'AV:N/AC:L/Au:M/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 4.7, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 4.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 5.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Dcn Dcme-320

Dcnetworks Dcme-320 Dcme-320 Firmware

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-02-06T06:32:05.840Z

Updated: 2026-02-23T09:22:13.715Z

Reserved: 2026-02-05T17:18:39.350Z

Link: CVE-2026-2000

Vulnrichment

Updated: 2026-02-12T15:08:11.945Z

NVD

Status : Analyzed

Published: 2026-02-06T07:16:13.053

Modified: 2026-04-29T01:00:01.613

Link: CVE-2026-2000

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-18T13:45:45Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required High

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Multiple

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object