CVE-2024-52780

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 29, 2024

Summary

CVE-2024-52780 is a Remote Code Execution vulnerability affecting DCME-320 versions up to 7.4.12.90, DCME-520 versions up to 9.25.5.11, DCME-320-L versions up to 9.3.5.26, and DCME-720 versions up to 9.1.5.11. Malicious actors can exploit this issue by targeting the /function/system/basic/mgmt_edit.php file, potentially gaining unauthorized control over the affected systems. Successful exploitation could lead to significant security risks, including data theft or system compromise. It is recommended that users of these affected versions upgrade to the latest patches as soon as possible to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share