CVE-2024-52780
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2024-52780 is a Remote Code Execution vulnerability affecting DCME-320 versions up to 7.4.12.90, DCME-520 versions up to 9.25.5.11, DCME-320-L versions up to 9.3.5.26, and DCME-720 versions up to 9.1.5.11. Malicious actors can exploit this issue by targeting the /function/system/basic/mgmt_edit.php file, potentially gaining unauthorized control over the affected systems. Successful exploitation could lead to significant security risks, including data theft or system compromise. It is recommended that users of these affected versions upgrade to the latest patches as soon as possible to mitigate this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.