DuraComm DP-10iN-100-MU Missing Authentication for Critical Function

July 22, 2025 invoker category_cve

CVE Details

Basic Information

Title DuraComm DP-10iN-100-MU Missing Authentication for Critical Function
Type cve
Published 2025-07-22T21:35:52.983Z
Modified 2025-07-22T21:35:52.983Z

Product Information

Vendor DuraComm Corporation
Product SPM-500 DP-10iN-100-MU
Version 0

CVSS Information

Base Score 8.7 (HIGH)
Attack Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Affected Products

  • DuraComm Corporation SPM-500 DP-10iN-100-MU 0

Additional Information

CWE List CWE-306
Source icscert

Description

DuraComm SPM-500 DP-10iN-100-MU

lacks access controls for a function that should require user authentication. This could allow an attacker to repeatedly reboot the device.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.