CVE Catalog

CVE-2026-56808

HighCVSS 7.2
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Elevated risk
1.55%

72th percentile — higher than 72% of all known CVEs

Summary

The DGM3103SCT device from AVTECH Security Corporation contains an OS command injection vulnerability. A user who can log in to the web management console can execute arbitrary commands with root privileges.

Risk Assessment

The risk involves potential full compromise of the device by an attacker with access to the admin panel, which may lead to data integrity and confidentiality breaches and further network attacks.

Recommendation

Immediately update the DGM3103SCT firmware to the latest version provided by the vendor and restrict access to the web management console to trusted IP addresses only.

Original NVD description (English source)

DGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may lead to arbitrary command execution with the root privilege by a user who can log in to the web management console of the affected product.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS