← Back

Dcnetworks

dcnetworks

11 CVEs • 10 products

Products (10)

Click to collapse
Toggle
Dcme 320 Firmware
dcme-320_firmware
8 CVEs
Dcme 320 L Firmware
dcme-320-l_firmware
7 CVEs
Dcme 720 Firmware
dcme-720_firmware
7 CVEs
Dcme 520 Firmware
dcme-520_firmware
6 CVEs
Dcfw 1800 Sdc Firmware
dcfw-1800-sdc_firmware
1 CVE
Dcfw 1800 Sdc
dcfw-1800-sdc
0 CVEs
Dcme 320 L
dcme-320-l
0 CVEs
Dcme 320
dcme-320
0 CVEs
Dcme 720
dcme-720
0 CVEs
Dcme 520
dcme-520
0 CVEs

CVEs (11)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2026-2000
1Dcnetworks
1Dcme 320 Firmware
Apr 29, 2026
Feb 6, 2026
2.0 LOW· v4
7.2 HIGH· v3
5.8 MEDIUM· v2
A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function apply_config of the file /function/system/basic/bridge_cfg.php of the component Web Management Backend. Performing a manipulation of the...Show more
A vulnerability was found in DCN DCME-320 up to 20260121. Impacted is the function apply_config of the file /function/system/basic/bridge_cfg.php of the component Web Management Backend. Performing a manipulation of the argument ip_list results in command injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-9387
1Dcnetworks
1Dcme 720 Firmware
Apr 29, 2026
Aug 24, 2025
2.1 LOW· v4
9.8 CRITICAL· v3
6.5 MEDIUM· v2
A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ip_block.php of the component Web Management Backend. Performing manipulation o...Show more
A vulnerability was found in DCN DCME-720 9.1.5.11. This affects an unknown function of the file /usr/local/www/function/audit/newstatistics/ip_block.php of the component Web Management Backend. Performing manipulation of the argument ip results in os command injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used. Other products might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-52782
1Dcnetworks
4Dcme 320 L Firmware
Dcme 320 FirmwareDcme 520 Firmware+1 more
Nov 6, 2025
Nov 29, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/audit/newstatistics/mon_stat_hist_new.php.
CVE-2024-52781
1Dcnetworks
4Dcme 320 L Firmware
Dcme 320 FirmwareDcme 520 Firmware+1 more
Nov 6, 2025
Nov 29, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/system/tool/traceroute.php.
CVE-2024-52780
1Dcnetworks
4Dcme 320 L Firmware
Dcme 320 FirmwareDcme 520 Firmware+1 more
Nov 6, 2025
Nov 29, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/system/basic/mgmt_edit.php.
CVE-2024-52779
1Dcnetworks
4Dcme 320 L Firmware
Dcme 320 FirmwareDcme 520 Firmware+1 more
Nov 6, 2025
Nov 29, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/audit/newstatistics/mon_stat_top10.php.
CVE-2024-52778
1Dcnetworks
4Dcme 320 L Firmware
Dcme 320 FirmwareDcme 520 Firmware+1 more
Nov 6, 2025
Nov 29, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/audit/newstatistics/mon_stat_hist.php.
CVE-2024-52777
1Dcnetworks
4Dcme 320 L Firmware
Dcme 320 FirmwareDcme 520 Firmware+1 more
Nov 6, 2025
Nov 29, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L, <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/system/basic/license_update.php.
CVE-2024-51115
1Dcnetworks
1Dcme 320 Firmware
Nov 5, 2025
Nov 5, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
DCME-320 v7.4.12.90 was discovered to contain a command injection vulnerability.
CVE-2024-48659
1Dcnetworks
1Dcme 320 L Firmware
Nov 6, 2025
Oct 21, 2024
N/A· v4
9.8 CRITICAL· v3
N/A· v2
An issue in DCME-320-L <=9.3.2.114 allows a remote attacker to execute arbitrary code via the log_u_umount.php component.
CVE-2023-43321
1Dcnetworks
1Dcfw 1800 Sdc Firmware
Nov 21, 2024
Oct 4, 2023
N/A· v4
8.8 HIGH· v3
N/A· v2
File Upload vulnerability in Digital China Networks DCFW-1800-SDC v.3.0 allows an authenticated attacker to execute arbitrary code via the wget function in the /sbin/cloudadmin.sh component.