Dcnglobal

dcnglobal

4 CVEs • 6 products

Products (6)

Click to collapse

Toggle

Dcme 520 Firmware

dcme-520_firmware

S4600 10p Si Firmware

s4600-10p-si_firmware

Dcbi Netlog Lab Firmware

dcbi-netlog-lab_firmware

Dcbi Netlog Lab

dcbi-netlog-lab

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-26802 1Dcnglobal 1Dcbi Netlog Lab Firmware May 5, 2025 Mar 26, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in the component /network_config/nsg_masq.cgi of DCN (Digital China Networks) DCBI-Netlog-LAB v1.0 allows attackers to bypass authentication and execute arbitrary commands via a crafted request.
CVE-2021-42324 1Dcnglobal 1S4600 10p Si Firmware Nov 21, 2024 Apr 5, 2022 N/A· v4 7.4 HIGH· v3 7.2 HIGH· v2 An issue was discovered on DCN (Digital China Networks) S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to...Show more An issue was discovered on DCN (Digital China Networks) S4600-10P-SI devices before R0241.0470. Due to improper parameter validation in the console interface, it is possible for a low-privileged authenticated attacker to escape the sandbox environment and execute system commands as root via shell metacharacters in the capture command parameters. Command output will be shown on the Serial interface of the device. Exploitation requires both credentials and physical access.Show less
CVE-2022-25390 1Dcnglobal 1Dcme 520 Firmware Nov 21, 2024 Mar 18, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 DCN Firewall DCME-520 was discovered to contain a remote command execution (RCE) vulnerability via the host parameter in the file /system/tool/ping.php.
CVE-2022-25389 1Dcnglobal 1Dcme 520 Firmware Nov 21, 2024 Mar 18, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 DCN Firewall DCME-520 was discovered to contain an arbitrary file download vulnerability via the path parameter in the file /audit/log/log_management.php.