{
  "id": "CVE-2024-52777",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2024-11-29T16:15:10.577",
  "lastModified": "2024-11-29T18:15:10.153",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "DCME-320 <=7.4.12.90, DCME-520 <=9.25.5.11, DCME-320-L, <=9.3.5.26, and DCME-720 <=9.1.5.11 are vulnerable to Remote Code Execution via /function/system/basic/license_update.php."
    },
    {
      "lang": "es",
      "value": "DCME-320 &lt;=7.4.12.90, DCME-520 &lt;=9.25.5.11, DCME-320-L, &lt;=9.3.5.26 y DCME-720 &lt;=9.1.5.11 son vulnerables a la ejecuci\u00f3n remota de c\u00f3digo a trav\u00e9s de /function/system/basic/license_update.php."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9
      }
    ]
  },
  "references": [
    {
      "url": "https://ba1100n.tech/%E6%BC%8F%E6%B4%9E%E6%8A%A5%E5%91%8A/dcme-all-series-rcessix-one/",
      "source": "cve@mitre.org"
    }
  ]
}