Описание
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the runPackDiagnose function in /cgi-bin/luci/api/diagnose.
Ссылки
- Not Applicable
- Mailing ListThird Party Advisory
- Not Applicable
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.55.1915_ew_3.0\(1\)b11p55 (включая)
Одновременно
cpe:2.3:o:ruijienetworks:reyeeos:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:ruijienetworks:rg-ew1200:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew1200g_pro:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew1800gx_pro:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew300_pro:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew3200gx_pro:-:*:*:*:*:*:*:*
EPSS
Процентиль: 85%
0.02542
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 8.8
github
почти 4 года назад
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the runPackDiagnose function in /cgi-bin/luci/api/diagnose.
EPSS
Процентиль: 85%
0.02542
Низкий
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-77