MidnightBSD

Advisories for ruijie

CVE-2019-16638

An issue was found on the Ruijie EG-2000 series gateway. An attacker can easily dump cleartext stored passwords in /data/config.text with simple XORs. This affects EG-2000SE EG_RGOS 11.1(1)B1.

Products Affected

Vendor Product Version
ruijie eg-2000se_firmware 11.1(1)b1
CVE-2019-16639

An issue was found on the Ruijie EG-2000 series gateway. There is a newcli.php API interface without access control, which can allow an attacker (who only has web interface access) to use TELNET commands and/or show admin passwords via the mode_url=exec&command= substring. This affects EG-2000SE EG_RGOS 11.9 B11P1.

Products Affected

Vendor Product Version
ruijie eg-2000se_firmware 11.9_b11p1
CVE-2019-16640

An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the class UploadFile is mishandled (%00 and /var/./html are not checked), which can allow an attacker to upload any file to the gateway. This affects EG-2000SE EG_RGOS 11.9 B11P1.

Products Affected

Vendor Product Version
ruijie eg-2000se_firmware 11.1(1)b1
ruijie eg-2000se_firmware 11.9_b11p1
CVE-2019-16641

An issue was found on the Ruijie EG-2000 series gateway. There is a buffer overflow in client.so. Consequently, an attacker can use login.php to login to any account, without providing its password. This affects EG-2000SE EG_RGOS 11.1(1)B1.

Products Affected

Vendor Product Version
ruijie eg-2000se_firmware 11.1(1)b1
CVE-2020-21627 MEDIUM

Ruijie RG-UAC commit 9071227 was discovered to contain a vulnerability in the component /current_action.php?action=reboot, which allows attackers to cause a denial of service (DoS) via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
ruijie rg-uac_firmware -
CVE-2020-21639 MEDIUM

Ruijie RG-UAC 6000-E50 commit 9071227 was discovered to contain a cross-site scripting (XSS) vulnerability via the rule_name parameter. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-e50_firmware -
CVE-2023-30308

An issue discovered in Ruijie EG210G-P, Ruijie EG105G-V2, Ruijie NBR, and Ruijie EG105G routers allows attackers to hijack TCP sessions which could lead to a denial of service.

Products Affected

Vendor Product Version
ruijie rg-nbr6120-e_firmware -
ruijie rg-nbr6210-e_firmware -
ruijie rg-nbr6205-e_firmware -
ruijie eg-105g_v2_firmware *
ruijie rg-eg210g-p_firmware -
ruijie rg-eg105g_firmware -
ruijie rg-eg105g_v2_firmware -
ruijie eg-210g-p_firmware *
ruijie eg-105g_firmware *
ruijie rg-nbr6215-e_firmware -
CVE-2023-3306 HIGH

A vulnerability was found in Ruijie RG-EW1200G EW_3.0(1)B11P204. It has been declared as critical. This vulnerability affects unknown code of the file app.09df2a9e44ab48766f5f.js of the component Admin Password Handler. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-231802 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
ruijie rg-ew1200g_firmware ew_3.0(1)b11p204
CVE-2023-3450 MEDIUM

A vulnerability was found in Ruijie RG-BCR860 2.5.13 and classified as critical. This issue affects some unknown processing of the component Network Diagnostic Page. The manipulation leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-232547. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-bcr860_firmware 2.5.13
CVE-2023-34644

Remote code execution vulnerability in Ruijie Networks Product: RG-EW series home routers and repeaters EW_3.0(1)B11P204, RG-NBS and RG-S1930 series switches SWITCH_3.0(1)B11P218, RG-EG series business VPN routers EG_3.0(1)B11P216, EAP and RAP series wireless access points AP_3.0(1)B11P218, NBC series wireless controllers AC_3.0(1)B11P86 allows unauthorized remote attackers to gain the highest privileges via crafted POST request to /cgi-bin/luci/api/auth.

Products Affected

Vendor Product Version
ruijie rg-nbs3200-24sfp_firmware 3.0(1)b11p218
ruijie rg-eg305gh-p-e_firmware 3.0(1)b11p216
ruijie rg-nbs3200-48gt4xs-p_firmware 3.0(1)b11p218
ruijie rg-nbs3200-24gt4xs_firmware 3.0(1)b11p218
ruijie rg-rap2260(e)_firmware ap_3.0(1)b11p218
ruijie rg-nbc256_firmware ac_3.0(1)b11p86
ruijie rg-s1930-24gt4sfp_firmware 3.0(1)b11p218
ruijie rg-eg1000c_firmware 3.0(1)b11p216
ruijie rg-rap2200(e)_firmware ap_3.0(1)b11p218
ruijie rg-eg1000e_firmware 3.0(1)b11p216
ruijie rg-s1930-24t4sfp-p_firmware 3.0(1)b11p218
ruijie rg-rap6262_firmware ap_3.0(1)b11p218
ruijie rg-rap6260(h)-d_firmware ap_3.0(1)b11p218
ruijie rg-eg310gh-e_firmware 3.0(1)b11p216
ruijie rg-rap1260_firmware ap_3.0(1)b11p218
ruijie rg-rap2266_firmware ap_3.0(1)b11p218
ruijie rg-rap6260(h)_firmware ap_3.0(1)b11p218
ruijie rg-nbs3200-8gt4xs_firmware 3.0(1)b11p218
ruijie rg-eg105g-e_firmware 3.0(1)b11p216
ruijie rg-eg209gs_firmware 3.0(1)b11p216
ruijie rg-ew1200r_firmware 3.0(1)b11p204
ruijie rg-rap73hd_firmware ap_3.0(1)b11p218
ruijie rg-rap6262(g)_firmware ap_3.0(1)b11p218
ruijie re-eg1000m_firmware 3.0(1)b11p216
ruijie rg-eg3230_firmware 3.0(1)b11p216
ruijie rg-rap1200(p)_firmware ap_3.0(1)b11p218
ruijie rg-rap2260_firmware ap_3.0(1)b11p218
ruijie rg-s1930-8t2sfp_firmware 3.0(1)b11p218
ruijie rg-nbs3100-48gt4sfp-p_firmware 3.0(1)b11p218
ruijie rg-rap6202(g)_firmware ap_3.0(1)b11p218
ruijie rg-rap6260(g)_firmware ap_3.0(1)b11p218
ruijie rg-ew3200gx_firmware 3.0(1)b11p204
ruijie rg-rap2200(f)_firmware ap_3.0(1)b11p218
ruijie rg-ew1200g_firmware 3.0(1)b11p204
ruijie rg-eg105g-p_firmware 3.0(1)b11p216
ruijie rg-s1930-8gt2sfp_firmware 3.0(1)b11p218
ruijie rg-eg210g-p_firmware 3.0(1)b11p216
ruijie rg-s1930-24gt4sfp-p_firmware 3.0(1)b11p218
ruijie rg-eg105gw-x_firmware 3.0(1)b11p216
ruijie rg-eg105gw(t)_firmware 3.0(1)b11p216
ruijie rg-ew1800gx_firmware 3.0(1)b11p204
ruijie rg-nbs3200-24gt4xs-p_firmware 3.0(1)b11p218
ruijie rg-nbs3100-24gt4sfp_firmware 3.0(1)b11p218
ruijie rg-nbs3100-8gt2sfp_firmware 3.0(1)b11p218
ruijie rg-eg3250_firmware 3.0(1)b11p216
ruijie rg-nbs3100-8gt2sfp-p_firmware 3.0(1)b11p218
ruijie rg-s1930-24t4sfp_firmware 3.0(1)b11p218
ruijie rg-eg3000xe_firmware 3.0(1)b11p216
ruijie rg-rap1200(f)_firmware ap_3.0(1)b11p218
ruijie rg-nbc512_firmware ac_3.0(1)b11p86
ruijie rg-nbs3100-24gt4sfp-p_firmware 3.0(1)b11p218
ruijie rg-rap2260(g)_firmware ap_3.0(1)b11p218
ruijie rg-ew300_firmware 3.0(1)b11p204
ruijie rg-s1930-8t2sfp-p_firmware 3.0(1)b11p218
ruijie rg-eg105g_firmware 3.0(1)b11p216
ruijie rg-eg3000eu_firmware 3.0(1)b11p216
ruijie rg-rap1201_firmware ap_3.0(1)b11p218
ruijie rg-ew300r_firmware 3.0(1)b11p204
ruijie rg-eg2000ce_firmware 3.0(1)b11p216
ruijie rg-s1930-8gt2sfp-p_firmware 3.0(1)b11p218
ruijie rg-nbs3200-48gt4xs_firmware 3.0(1)b11p218
ruijie rg-rap1261_firmware ap_3.0(1)b11p218
ruijie rg-rap2260(f)_firmware ap_3.0(1)b11p218
ruijie rg-eg2100-p_firmware 3.0(1)b11p216
ruijie rg-ew1200_firmware 3.0(1)b11p204
CVE-2023-38902

A command injection vulnerability in RG-EW series home routers and repeaters v.EW_3.0(1)B11P219, RG-NBS and RG-S1930 series switches v.SWITCH_3.0(1)B11P219, RG-EG series business VPN routers v.EG_3.0(1)B11P219, EAP and RAP series wireless access points v.AP_3.0(1)B11P219, and NBC series wireless controllers v.AC_3.0(1)B11P219 allows an authorized attacker to execute arbitrary commands on remote devices by sending a POST request to /cgi-bin/luci/api/cmd via the remoteIp field.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-nbs2000_firmware 3.0(1)b11p219
ruijie rg-nbs5200-48gt4xs_firmware 3.0(1)b11p219
ruijie rg-nbs3200-24gt4xs-p_firmware 3.0(1)b11p219
ruijie rg-nbs3100-8gt2sfp-p_firmware 3.0(1)b11p219
ruijie rg-nbs5200-24gt4x_firmware 3.0(1)b11p219
ruijie rg-rap2200(f)_firmware 3.0(1)b11p219
ruijie rg-nbs5300-48mg6xs_firmware 3.0(1)b11p219
ruijie rg-s1930-8gt2sfp-p_firmware 3.0(1)b11p219
ruijie rg-rap2200(e)_firmware 3.0(1)b11p219
ruijie rg-nbs5710-24gt4sfp-e_firmware 3.0(1)b11p219
ruijie rg-nbs7006_firmware 3.0(1)b11p219
ruijie rg-nbs3100-24gt4sfp-p_v2_firmware 3.0(1)b11p219
ruijie rg-ew300r_firmware 3.0(1)b11p219
ruijie rg-eg105g-e_firmware 3.0(1)b11p219
ruijie rg-nbs5750v2-24sfp4xs-e_firmware 3.0(1)b11p219
ruijie rg-nbs5652xg_firmware 3.0(1)b11p219
ruijie rg-nbs3200-24sfp/8gt4xs_firmware 3.0(1)b11p219
ruijie rg-nbs5750v2-48gt4xs-e_firmware 3.0(1)b11p219
ruijie rg-rap630ioda_firmware 3.0(1)b11p219
ruijie rg-ew1800gx_pro_firmware 3.0(1)b11p219
ruijie rg-eap101_firmware 3.0(1)b11p219
ruijie rg-nbs7003_firmware 3.0(1)b11p219
ruijie rg-nbs1850gc_v2_firmware 3.0(1)b11p219
ruijie rg-nbs6100-20xs4vs2qxs-s_firmware 3.0(1)b11p219
ruijie rg-eg210g-p_firmware 3.0(1)b11p219
ruijie rg-nbs5816xs_firmware 3.0(1)b11p219
ruijie rg-s1930-8t2sfp-p_firmware 3.0(1)b11p219
ruijie rg-rap6260(g)_firmware 3.0(1)b11p219
ruijie rg-nbs1850gc_firmware 3.0(1)b11p219
ruijie rg-rap2200(g)_firmware 3.0(1)b11p219
ruijie rg-s1930-8gt2sfp_firmware 3.0(1)b11p219
ruijie rg-nbs2026g-p_firmware 3.0(1)b11p219
ruijie rg-eap162(g)_firmware 3.0(1)b11p219
ruijie rg-rap630cd_firmware 3.0(1)b11p219
ruijie rg-nbs5200-24sfp/8gt4xs_firmware 3.0(1)b11p219
ruijie rg-eap602_firmware 3.0(1)b11p219
ruijie rg-rap6261(e)_firmware 3.0(1)b11p219
ruijie rg-ew3200gx_pro_firmware 3.0(1)b11p219
ruijie rg-rap1200(f)_firmware 3.0(1)b11p219
ruijie rg-rap100_firmware 3.0(1)b11p219
ruijie rg-s1930-24gt4sfp_firmware 3.0(1)b11p219
ruijie rg-rap2260(g)_firmware 3.0(1)b11p219
ruijie rg-nbs5750v2-24gt4xs-e_firmware 3.0(1)b11p219
ruijie rg-eap101_v2_firmware 3.0(1)b11p219
ruijie rg-nbs2009g-p_firmware 3.0(1)b11p219
ruijie rg-nbc512_firmware 3.0(1)b11p219
ruijie rg-nbs5552xg_firmware 3.0(1)b11p219
ruijie rg-nbs5528xg_firmware 3.0(1)b11p219
ruijie rg-nbs3100-8gt2sfp_firmware 3.0(1)b11p219
ruijie rg-nbs226f_firmware 3.0(1)b11p219
ruijie rg-nbs3100-24gt4sfp-p_firmware 3.0(1)b11p219
ruijie rg-eap212(f)_firmware 3.0(1)b11p219
ruijie rg-eap201_firmware 3.0(1)b11p219
ruijie rg-ew1200r_firmware 3.0(1)b11p219
ruijie rg-nbs2026g_firmware 3.0(1)b11p219
ruijie rg-s1930-24t4sfp-p_firmware 3.0(1)b11p219
ruijie rg-rap120_firmware 3.0(1)b11p219
ruijie rg-eap102(f)_firmware 3.0(1)b11p219
ruijie rg-ew1200g_pro_firmware 3.0(1)b11p219
ruijie rg-nbs6002_firmware 3.0(1)b11p219
ruijie rg-nbs3200-48gt4xs_firmware 3.0(1)b11p219
ruijie rg-nbs228f_firmware 3.0(1)b11p219
ruijie rg-nbs3100-24gt4sfp_firmware 3.0(1)b11p219
ruijie rg-eap102_v2_firmware 3.0(1)b11p219
ruijie rg-nbc256_firmware 3.0(1)b11p219
ruijie rg-eg105g_v2_firmware 3.0(1)b11p219
ruijie rg-ew1300g_firmware 3.0(1)b11p219
ruijie rg-eg210g-pe_firmware 3.0(1)b11p219
ruijie rg-eap212(g)_firmware 3.0(1)b11p219
ruijie rg-eap202_firmware 3.0(1)b11p219
ruijie rg-rap120v2_firmware 3.0(1)b11p219
ruijie rg-nbs5100-48gt4sfp_firmware 3.0(1)b11p219
ruijie rg-rap6261(cd)_firmware 3.0(1)b11p219
ruijie rg-rap1260(g)_firmware 3.0(1)b11p219
ruijie rg-nbs252f_firmware 3.0(1)b11p219
ruijie rg-eap662(g)_firmware 3.0(1)b11p219
ruijie rg-ew1200_firmware 3.0(1)b11p219
ruijie rg-rap1200(e)_firmware 3.0(1)b11p219
ruijie rg-ew300_pro_firmware 3.0(1)b11p219
ruijie rg-ew3000gx_pro_firmware 3.0(1)b11p219
ruijie rg-nbs3200-48gt4xs-p_firmware 3.0(1)b11p219
ruijie rg-nbs5628xg_firmware 3.0(1)b11p219
ruijie rg-eap262(g)_firmware 3.0(1)b11p219
ruijie rg-nbs5100-24gt4sfp_firmware 3.0(1)b11p219
ruijie rg-nb3200-24gt4xs_firmware 3.0(1)b11p219
ruijie rg-eap102_firmware 3.0(1)b11p219
ruijie rg-eg210g-e_firmware 3.0(1)b11p219
ruijie rg-nbs5552xg_v2.0_firmware 3.0(1)b11p219
ruijie rg-nbs5710-48gt4sfp-e_firmware 3.0(1)b11p219
ruijie rg-nbs5710-24gt4sfp-e-p_firmware 3.0(1)b11p219
ruijie rg-rap2260(e)_firmware 3.0(1)b11p219
ruijie rg-s1930-24t4sfp_firmware 3.0(1)b11p219
ruijie rg-nbs5750-28gt4xs-e_firmware 3.0(1)b11p219
ruijie rg-eg105g-pe_firmware 3.0(1)b11p219
ruijie rg-nbs200_firmware 3.0(1)b11p219
ruijie rg-nbs3100-48gt4sfp_firmware 3.0(1)b11p219
CVE-2023-4169 MEDIUM

A vulnerability was found in Ruijie RG-EW1200G 1.0(1)B1P5. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /api/sys/set_passwd of the component Administrator Password Handler. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-236185 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
ruijie rg-ew1200g_firmware 1.0(1)b1p5
CVE-2023-48849

Ruijie EG Series Routers version EG_3.0(1)B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
ruijie rg-eg310gh-e_firmware 3.0(1)b11p216
ruijie rg-eg210g-pe_firmware 3.0(1)b11p216
ruijie rg-eg3000xe_firmware 3.0(1)b11p216
ruijie rg-eg305gh-p-e_firmware 3.0(1)b11p216
ruijie rg-eg105g-e_firmware 3.0(1)b11p216
ruijie rg-eg105g_firmware 3.0(1)b11p216
ruijie rg-eg105g-p_firmware 3.0(1)b11p216
ruijie rg-eg3000eu_firmware 3.0(1)b11p216
ruijie rg-eg1000c_firmware 3.0(1)b11p216
ruijie rg-eg105g_v2_firmware 3.0(1)b11p216
ruijie rg-eg210g-p_firmware 3.0(1)b11p216
ruijie rg-eg209gs_firmware 3.0(1)b11p216
ruijie rg-eg2000ce_firmware 3.0(1)b11p216
ruijie rg-eg210g-e_firmware 3.0(1)b11p216
ruijie rg-eg105gw-x_firmware 3.0(1)b11p216
ruijie rg-eg105g-pe_firmware 3.0(1)b11p216
ruijie rg-eg3230_firmware 3.0(1)b11p216
ruijie rg-eg1000e_firmware 3.0(1)b11p216
ruijie rg-eg105gw(t)_firmware 3.0(1)b11p216
ruijie rg-eg3250_firmware 3.0(1)b11p216
ruijie rg-eg2100-p_firmware 3.0(1)b11p216
CVE-2023-50993

Ruijie WS6008 v1.x v2.x AC_RGOS11.9(6)W3B2_G2C6-01_10221911 and WS6108 v1.x AC_RGOS11.9(6)W3B2_G2C6-01_10221911 was discovered to contain a command injection vulnerability via the function downFiles.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
ruijie rg-ws6008_firmware 11.9(6)w3b2_g2c6-01_10221911
ruijie rg-ws6108_firmware 11.9(6)w3b2_g2c6-01_10221911
CVE-2024-24116

An issue in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release(9736) allows a remote attacker to gain privileges via the system/config_menu.htm.

Products Affected

Vendor Product Version
ruijie rg-nbs2009g-p_firmware 10.4(1)p2_release(9736)
CVE-2024-2641 MEDIUM

A vulnerability was found in Ruijie RG-NBS2009G-P up to 20240305. It has been classified as critical. Affected is an unknown function of the file /system/passwdManage.htm of the component Password Handler. The manipulation leads to improper authorization. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-257280. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-285,

Products Affected

Vendor Product Version
ruijie rg-nbs2009g-p_firmware -
CVE-2024-2642 HIGH

A vulnerability was found in Ruijie RG-NBS2009G-P up to 20240305. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /EXCU_SHELL. The manipulation of the argument Command1 leads to command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-257281 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 7.3 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 3.9 3.4

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
ruijie rg-nbs2009g-p_firmware -
CVE-2024-28288

Ruijie RG-NBR700GW 10.3(4b12) router lacks cookie verification when resetting the password, resulting in an administrator password reset vulnerability. An attacker can use this vulnerability to log in to the device and disrupt the business of the enterprise.

Products Affected

Vendor Product Version
ruijie rg-nbr700gw_firmware 10.3(4b12)
CVE-2024-2909 HIGH

A vulnerability classified as critical was found in Ruijie RG-EG350 up to 20240318. Affected by this vulnerability is the function setAction of the file /itbox_pi/networksafe.php?a=set of the component HTTP POST Request Handler. The manipulation of the argument bandwidth leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-257977 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-eg350_firmware *
CVE-2024-2910 MEDIUM

A vulnerability, which was classified as critical, has been found in Ruijie RG-EG350 up to 20240318. Affected by this issue is the function vpnAction of the file /itbox_pi/vpn_quickset_service.php?a=set_vpn of the component HTTP POST Request Handler. The manipulation of the argument ip/port/user/pass/dns/startIp leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-257978 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-eg350_firmware *
CVE-2024-4255 MEDIUM

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240419. This issue affects some unknown processing of the file /view/network Config/GRE/gre_edit_commit.php. The manipulation of the argument name leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-262145 was assigned to this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-42936

The mqlink.elf is service component in Ruijie RG-EW300N with firmware ReyeeOS 1.300.1422 is vulnerable to Remote Code Execution via a modified MQTT broker message.

Products Affected

Vendor Product Version
ruijie reyee_os 1.300.1422
CVE-2024-4501 MEDIUM

A vulnerability was found in Ruijie RG-UAC up to 20240428. It has been rated as critical. This issue affects some unknown processing of the file /view/bugSolve/captureData/commit.php. The manipulation of the argument tcpDump leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263105 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4502 MEDIUM

A vulnerability classified as critical has been found in Ruijie RG-UAC up to 20240428. Affected is an unknown function of the file /view/dhcp/dhcpClient/dhcp_client_commit.php. The manipulation of the argument ifName leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-263106 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4503 MEDIUM

A vulnerability classified as critical was found in Ruijie RG-UAC up to 20240428. Affected by this vulnerability is an unknown functionality of the file /view/dhcp/dhcpConfig/dhcp_relay_commit.php. The manipulation of the argument interface_from leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263107. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4504 MEDIUM

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240428. Affected by this issue is some unknown functionality of the file /view/HAconfig/baseConfig/commit.php. The manipulation of the argument peer_ip/local_ip leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263108. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4505 MEDIUM

A vulnerability, which was classified as critical, was found in Ruijie RG-UAC up to 20240428. This affects an unknown part of the file /view/IPV6/ipv6Addr/ip_addr_add_commit.php. The manipulation of the argument prelen/ethname leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263109 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4506 MEDIUM

A vulnerability has been found in Ruijie RG-UAC up to 20240428 and classified as critical. This vulnerability affects unknown code of the file /view/IPV6/ipv6Addr/ip_addr_edit_commit.php. The manipulation of the argument text_ip_addr/orgprelen/orgname leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-263110 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4507 MEDIUM

A vulnerability was found in Ruijie RG-UAC up to 20240428 and classified as critical. This issue affects some unknown processing of the file /view/IPV6/ipv6StaticRoute/static_route_add_ipv6.php. The manipulation of the argument text_prefixlen/text_gateway/devname leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263111. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4508 MEDIUM

A vulnerability was found in Ruijie RG-UAC up to 20240428. It has been classified as critical. Affected is an unknown function of the file /view/IPV6/ipv6StaticRoute/static_route_edit_ipv6.php. The manipulation of the argument oldipmask/oldgateway/olddevname leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263112. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4509 MEDIUM

A vulnerability was found in Ruijie RG-UAC up to 20240428. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /view/IPV6/naborTable/add_commit.php. The manipulation of the argument ip_addr/mac_addr leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263113 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4510 MEDIUM

A vulnerability was found in Ruijie RG-UAC up to 20240428. It has been rated as critical. Affected by this issue is some unknown functionality of the file /view/networkConfig/ArpTable/arp_add_commit.php. The manipulation of the argument text_ip_addr/text_mac_addr leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-263114 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4813 MEDIUM

A vulnerability classified as critical has been found in Ruijie RG-UAC up to 20240506. Affected is an unknown function of the file /view/networkConfig/physicalInterface/interface_commit.php. The manipulation of the argument name leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. VDB-263934 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4814 MEDIUM

A vulnerability classified as critical was found in Ruijie RG-UAC up to 20240506. Affected by this vulnerability is an unknown functionality of the file /view/networkConfig/RouteConfig/StaticRoute/static_route_edit_commit.php. The manipulation of the argument oldipmask/oldgateway leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263935. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4815 MEDIUM

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240506. Affected by this issue is some unknown functionality of the file /view/bugSolve/viewData/detail.php. The manipulation of the argument filename leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263936. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-4816 MEDIUM

A vulnerability, which was classified as critical, was found in Ruijie RG-UAC up to 20240506. This affects an unknown part of the file /view/networkConfig/GRE/gre_add_commit.php. The manipulation of the argument name/remote/local/IP leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263937 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-48783

An issue in Ruijie NBR3000D-E Gateway allows a remote attacker to obtain sensitive information via the /tool/shell/postgresql.conf component.

Products Affected

Vendor Product Version
ruijie nbr3000d-e_firmware -
CVE-2024-5336 MEDIUM

A vulnerability has been found in Ruijie RG-UAC up to 20240516 and classified as critical. This vulnerability affects the function addVlan of the file /view/networkConfig/vlan/vlan_add_commit.php. The manipulation of the argument phyport leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-266242 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-5337 MEDIUM

A vulnerability was found in Ruijie RG-UAC up to 20240516 and classified as critical. This issue affects some unknown processing of the file /view/systemConfig/sys_user/user_commit.php. The manipulation of the argument email2/user_name leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-266243. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-5338 MEDIUM

A vulnerability was found in Ruijie RG-UAC up to 20240516. It has been classified as critical. Affected is an unknown function of the file /view/vpn/autovpn/online.php. The manipulation of the argument peernode leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-266244. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-5339 MEDIUM

A vulnerability was found in Ruijie RG-UAC up to 20240516. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /view/vpn/autovpn/online_check.php. The manipulation of the argument peernode leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-266245 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-5340 MEDIUM

A vulnerability was found in Ruijie RG-UAC up to 20240516. It has been rated as critical. Affected by this issue is some unknown functionality of the file /view/vpn/autovpn/sub_commit.php. The manipulation of the argument key leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-266246 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_6000-isg10_firmware -
ruijie rg-uac_6000-x20m_firmware -
ruijie rg-uac_6000-e50_firmware -
ruijie rg-uac_6000-ea_firmware -
ruijie rg-uac_6000-e20_firmware -
ruijie rg-uac_6000-e50c_firmware -
ruijie rg-uac_6000-x200_firmware -
ruijie rg-uac_6000-e10c_firmware -
ruijie rg-uac_6000-x20me_firmware -
ruijie rg-uac_6000-e20c_firmware -
ruijie rg-uac_6000-si_firmware -
ruijie rg-uac_6000-xs_firmware -
ruijie rg-uac_6000-u3210_firmware -
ruijie rg-uac_6000-x20_firmware -
ruijie rg-uac_6000-isg200_firmware -
ruijie rg-uac_6000-e20m_firmware -
ruijie rg-uac_6000-x300d_firmware -
ruijie rg-uac_6000-x60_firmware -
ruijie rg-uac_6000-u3100_firmware -
ruijie rg-uac_6000-isg40_firmware -
ruijie rg-uac_6000-e10_firmware -
ruijie rg-uac_6000-e50m_firmware -
ruijie rg-uac_6000-ei_firmware -
ruijie rg-uac_6000-x100_firmware -
ruijie rg-uac_6000-cc_firmware -
ruijie rg-uac_6000-isg02_firmware -
ruijie rg-uac_6000-x100s_firmware -
CVE-2024-6184 MEDIUM

A vulnerability classified as critical was found in Ruijie RG-UAC 1.0. Affected by this vulnerability is an unknown functionality of the file /view/systemConfig/reboot/reboot_commit.php. The manipulation of the argument servicename leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-269155. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_firmware 1.0
CVE-2024-6185 MEDIUM

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC 1.0. Affected by this issue is the function get_ip_addr_details of the file /view/dhcp/dhcpConfig/commit.php. The manipulation of the argument ethname leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-269156. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_firmware 1.0
CVE-2024-6186 MEDIUM

A vulnerability, which was classified as critical, was found in Ruijie RG-UAC 1.0. This affects an unknown part of the file /view/userAuthentication/SSO/commit.php. The manipulation of the argument ad_log_name leads to os command injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-269157 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_firmware 1.0
CVE-2024-6187 MEDIUM

A vulnerability has been found in Ruijie RG-UAC 1.0 and classified as critical. This vulnerability affects unknown code of the file /view/vpn/autovpn/sub_commit.php. The manipulation of the argument key leads to os command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-269158 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
ruijie rg-uac_firmware 1.0
CVE-2024-6269 MEDIUM

A vulnerability has been found in Ruijie RG-UAC 1.0 and classified as critical. This vulnerability affects the function get_ip.addr_details of the file /view/vpn/autovpn/sxh_vpnlic.php of the component HTTP POST Request Handler. The manipulation of the argument indevice leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-269482 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
ruijie rg-uac_firmware 1.0
CVE-2025-25527

Buffer overflow vulnerability in Ruijie RG-NBR2600S Gateway 10.3(4b12) due to the lack of length verification, which is related to the configuration of source address NAT rules. Attackers who successfully exploit this vulnerability can cause the remote target device to crash or execute arbitrary commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 2.5 2.5

Products Affected

Vendor Product Version
ruijie nbr2600s_firmware 10.3(4b12)
ruijie rg-nbr2600s_firmware 10.3(4b12)
CVE-2025-56077

OS Command Injection vulnerability in Ruijie RG-RAP2200(E) 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-rap2200(e)_firmware 3.0(1)b11p247
ruijienetworks reyee_os 2.280.0
CVE-2025-56079

OS Command Injection vulnerability in Ruijie RG-EW1300G EW1300G V1.00/V2.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1300g_firmware -
ruijie be50_firmware ew_3.0(1)b11p258
CVE-2025-56082

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request to the check_changes in file /usr/lib/lua/luci/controller/admin/common.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr600w_firmware -
CVE-2025-56083

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_networkId_merge.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-eap602_firmware 3.0(1)b2p55
ruijie reyee_os 219
ruijie reyee_os 221
ruijie rg-yst250f_firmware 3.0(1)b11p280yst250f
ruijie rg-est310_v2_firmware b11p221
CVE-2025-56084

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226_EW1800GX-PRO_10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-eap602_firmware 3.0(1)b2p55
ruijie reyee_os 219
ruijie reyee_os 221
ruijie rg-yst250f_firmware 3.0(1)b11p280yst250f
ruijie rg-est310_v2_firmware b11p221
CVE-2025-56085

OS Command Injection vulnerability in Ruijie RG-EW1200 EW_3.0(1)B11P227_EW1200_11130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew300_pro_firmware 3.0(1)b11p219
ruijie rg-ew1200_firmware 3.0(1)b11p227
CVE-2025-56086

OS Command Injection vulnerability in Ruijie RG-EW1200 EW_3.0(1)B11P227_EW1200_11130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1200_firmware 3.0(1)b11p227
ruijie rg-x60_firmware 3.0(1)b11p237
CVE-2025-56087

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request to the run_tcpdump in file /usr/lib/lua/luci/controller/admin/common_tcpdump.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr600w_firmware -
CVE-2025-56088

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_service in file /usr/lib/lua/luci/controller/admin/service.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr860_firmware -
CVE-2025-56089

OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew300g_pro_firmware ew_3.0(1)b11p219
ruijie m18-ew_firmware 3.0(1)b11p226
CVE-2025-56090

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1200r_firmware ew_3.0(1)b11p301
ruijie rg-ew1200g_pro_firmware -
CVE-2025-56091

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1800gx_firmware 3.0(1)b11p226
ruijie rg-ew300r_firmware 3.0(1)b11p301
CVE-2025-56092

OS Command Injection vulnerability in Ruijie X30 PRO V1 X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie x30_pro_firmware -
ruijie rg-ew300t_firmware -
CVE-2025-56093

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the setWisp in file /usr/lib/lua/luci/modules/wireless.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew300_pro_firmware 3.0(1)b11p219
ruijie rg-eap602_firmware 3.0(1)b2p55
ruijie x30_pro_firmware -
CVE-2025-56094

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/host_access_delay.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew300_pro_firmware 3.0(1)b11p219
ruijie x30_pro_firmware -
CVE-2025-56095

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-eap602_firmware 3.0(1)b2p55
ruijie rg-ew1200g_pro_firmware -
CVE-2025-56096

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request to the restart_modules in file /usr/lib/lua/luci/controller/admin/common.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr600w_firmware -
CVE-2025-56097

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226_EW1800GX-PRO_10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1800gx_pro_firmware 3.0(1)b11p226
ruijie rg-ew300n_firmware 3.0(1)b11p300
CVE-2025-56098

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew300_pro_firmware 3.0(1)b11p219
ruijie x30_pro_firmware -
CVE-2025-56099

OS Command Injection vulnerability in Ruijie RG-YST AP_3.0(1)B11P280YST250F allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-eap602_firmware 3.0(1)b2p55
ruijie reyee_os 219
ruijie reyee_os 221
ruijie rg-yst250f_firmware 3.0(1)b11p280yst250f
ruijie rg-est310_v2_firmware b11p221
CVE-2025-56101

OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1200r_firmware ew_3.0(1)b11p301
ruijie m18-ew_firmware 3.0(1)b11p226
CVE-2025-56102

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1800gx_firmware 3.0(1)b11p226
ruijie rg-ew300r_firmware 3.0(1)b11p301
CVE-2025-56106

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-est350_firmware 3.0(1)b11p221
ruijie rg-ew1800gx_firmware 3.0(1)b11p226
CVE-2025-56107

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request to the submit_wifi in file /usr/lib/lua/luci/controller/admin/common_quick_config.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr600w_firmware -
CVE-2025-56108

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew300_pro_firmware 3.0(1)b11p219
ruijie rg-est350_firmware 3.0(1)b11p221
ruijie rg-eap602_firmware 3.0(1)b2p55
ruijie x30_pro_firmware -
ruijie rg-est310_firmware 3.0(1)b11p211
CVE-2025-56109

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_wireless in file /usr/lib/lua/luci/control/admin/wireless.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr860_firmware -
CVE-2025-56110

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_deal_update in file /usr/lib/lua/luci/controller/api/rcmsAPI.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr860_firmware -
CVE-2025-56111

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the network_set_wan_conf in file /usr/lib/lua/luci/controller/admin/netport.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr860_firmware 2.5.13-r2224
CVE-2025-56113

OS Command Injection vulnerability in Ruijie RG-YST EST, YSTAP_3.0(1)B11P280YST250F V1.xxV2.xx allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-eap602_firmware 3.0(1)b2p55
ruijie reyee_os 219
ruijie reyee_os 221
ruijie rg-yst250f_firmware 3.0(1)b11p280yst250f
ruijie rg-est310_v2_firmware b11p221
CVE-2025-56114

OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1300g_firmware ew_3.0(1)b11p303
ruijie m18-ew_firmware 3.0(1)b11p226
CVE-2025-56117

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie x30_pro_firmware -
ruijie rg-est310_firmware 3.0(1)b11p211
CVE-2025-56118

OS Command Injection vulnerability in Ruijie X60 PRO X60_10212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-x60_pro_firmware 1.021.2014
ruijie rg-ew3200gx_firmware 3.0(1)b11p219
CVE-2025-56120

OS Command Injection vulnerability in Ruijie X60 PRO X60_10212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-x60_pro_firmware 1.021.2014
ruijie rg-ew1200_firmware 3.0(1)b11p301
CVE-2025-56122

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226_EW1800GX-PRO_10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1800gx_pro_firmware 1.022.3117
ruijie rg-ew1800gx_firmware 3.0(1)b11p226
ruijie rg-ew300n_firmware 3.0(1)b11p300
CVE-2025-56123

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-ew1300g_firmware ew_3.0(1)b11p303
ruijie rg-ew1200g_pro_firmware -
CVE-2025-56124

OS Command Injection vulnerability in Ruijie X60 PRO X60_10212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
ruijie rg-x60_pro_firmware 1.021.2014
ruijie rg-ew1200_firmware 3.0(1)b11p301
CVE-2025-56127

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitrary commands via a crafted POST request to the get_wanobj in file /usr/lib/lua/luci/controller/admin/common.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr600w_firmware 1.0.4.4468
CVE-2025-56129

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_diagnosis in file /usr/lib/lua/luci/controller/admin/diagnosis.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-bcr860_firmware 2.5.13
CVE-2025-56130

OS Command Injection vulnerability in Ruijie RG-S1930 S1930SWITCH_3.0(1)B11P230 allowing attackers to execute arbitrary commands via a crafted POST request to the module_update in file /usr/local/lua/dev_config/ace_sw.lua.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
ruijie rg-nbs5100-24gt4sfp_firmware 3.0(1)b11p248
ruijienetworks reyee_os 248
ruijie rg-s1930_firmware 3.0(1)b11p230
CVE-2025-56752

A vulnerability in the Ruijie RG-ES series switch firmware ESW_1.0(1)B1P39 enables remote attackers to fully bypass authentication mechanisms, providing them with unrestricted access to alter administrative settings and potentially seize control of affected devices via crafted HTTP POST request to /user.cgi.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.4 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H 3.9 5.5

Products Affected

Vendor Product Version
ruijie rg-es209gc-p_firmware esw_1.0(1)b1p27
ruijie rg-es205gc-p_firmware esw_1.0(1)b1p39
ruijie rg-es210gs-p_firmware esw_1.0(1)b1p27
ruijie rg-es210gs-p_firmware esw_1.0(1)b1p35
ruijie rg-es216gc-v2_firmware esw_1.0(1)b1p35
ruijie rg-es218gc-p_firmware esw_1.0(1)b1p35
ruijie rg-nis2100-4gt2sfp-hp_firmware esw_1.0(1)b1p39
ruijie rg-es216gc-v2_firmware esw_1.0(1)b1p27
ruijie rg-es206gc-p_firmware esw_1.0(1)b1p27
ruijie rg-es208gc_firmware esw_1.0(1)b1p35
ruijie rg-es224gc_firmware esw_1.0(1)b1p27
ruijie rg-es226gc-p_firmware esw_1.0(1)b1p35
ruijie rg-es220gs-p_firmware esw_1.0(1)b1p39
ruijie rg-es210gc-lp_firmware esw_1.0(1)b1p27
ruijie rg-es216gc-v2_firmware esw_1.0(1)b1p39
ruijie rg-es205gc_firmware esw_1.0(1)b1p35
ruijie rg-nis2100-8gt2sfp-hp_firmware esw_1.0(1)b1p39
ruijie rg-es218gc-p_firmware esw_1.0(1)b1p27
ruijie rg-es205gc_firmware esw_1.0(1)b1p27
ruijie rg-es208gc_firmware esw_1.0(1)b1p27
ruijie rg-es220gs-p_firmware esw_1.0(1)b1p35
ruijie rg-es205gc-p_firmware esw_1.0(1)b1p35
ruijie rg-es205gc_firmware esw_1.0(1)b1p39
ruijie rg-es220gs-p_firmware esw_1.0(1)b1p27
ruijie rg-es206gs-p_firmware esw_1.0(1)b1p39
ruijie rg-es206gs-p_firmware esw_1.0(1)b1p35
ruijie rg-es228gs-p_firmware esw_1.0(1)b1p27
ruijie rg-es224gc-v2_firmware esw_1.0(1)b1p39
ruijie rg-es208gc_firmware esw_1.0(1)b1p39
ruijie rg-es206gc-p_firmware esw_1.0(1)b1p35
ruijie rg-es226gc-p_firmware esw_1.0(1)b1p27
ruijie rg-es209gc-p_firmware esw_1.0(1)b1p35
ruijie rg-es209gc-p_firmware esw_1.0(1)b1p39
ruijie rg-es209mg-p_firmware esw_1.0(1)b1p42_release(12142711)
ruijie rg-es224gc-v2_firmware esw_1.0(1)b1p27
ruijie rg-es228gs-p_firmware esw_1.0(1)b1p35
ruijie rg-es210gs-p_firmware esw_1.0(1)b1p39
ruijie rg-es206mg-p_firmware esw_1.0(1)b1p42_release(12142711)
ruijie rg-es216gc_firmware esw_1.0(1)b1p27
ruijie rg-es228gs-p_firmware esw_1.0(1)b1p39
ruijie rg-es205gc-p_firmware esw_1.0(1)b1p27
ruijie rg-es206gs-p_firmware esw_1.0(1)b1p27
ruijie rg-es224gc-v2_firmware esw_1.0(1)b1p35
CVE-2025-65363

Authenticated append-style command-injection Ruijie APs (AP_RGOS 11.1.x) allows an authenticated web user to execute appended shell expressions as root, enabling file disclosure, device disruption, and potential network pivoting via the command parameter to the web_action.do endpoint.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

Products Affected

Vendor Product Version
ruijie rg-ap720-l_firmware *
CVE-2025-9424 MEDIUM

A vulnerability was identified in Ruijie WS7204-A 2017.06.15. Affected by this vulnerability is an unknown functionality of the file /itbox_pi/branch_import.php?a=branch_list. Such manipulation of the argument province leads to os command injection. The attack can be executed remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
cna@vuldb.com 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L 1.2 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,CWE-78,CWE-78,

Products Affected

Vendor Product Version
ruijie ws7204-a_firmware 2017.06.15