CVE-2022-24630

HIGH

AudioCodes Device Manager Express <7.8.20002.47752 - Command Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-24630.

AI-analyzed exploit summary This Python script exploits multiple vulnerabilities in AudioCodes Device Manager Express (CVE-2022-24627, CVE-2022-24629, CVE-2022-24630, CVE-2022-24632) to achieve remote code execution, file upload/download, and command execution via SQL injection, path traversal, and authentication bypass.

Description

An issue was discovered in AudioCodes Device Manager Express through 7.8.20002.47752. BrowseFiles.php allows a ?cmd=ssh POST request with an ssh_command field that is executed.

Exploits (1)

exploitdb WORKING POC
pythonwebappsphp
https://www.exploit-db.com/exploits/51145

This Python script exploits multiple vulnerabilities in AudioCodes Device Manager Express (CVE-2022-24627, CVE-2022-24629, CVE-2022-24630, CVE-2022-24632) to achieve remote code execution, file upload/download, and command execution via SQL injection, path traversal, and authentication bypass.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: AudioCodes Device Manager Express <= 7.8.20002.47752
No auth needed
Prerequisites: Network access to the target · Default credentials or SQL injection vulnerability for authentication bypass
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (1)

Core 1
Core References
Exploit, Mailing List, Third Party Advisory
http://seclists.org/fulldisclosure/2023/Feb/12

Scores

CVSS v3 7.2
EPSS 0.2389
EPSS Percentile 97.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-77
Status published
Products (1)
audiocodes/device_manager_express < 7.8.20002.47752
Published May 29, 2023
Tracked Since Feb 18, 2026