Описание
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the checkNet function in /cgi-bin/luci/api/auth.
Ссылки
- Not Applicable
- Mailing ListThird Party Advisory
- Not Applicable
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.55.1915_ew_3.0\(1\)b11p55 (включая)
Одновременно
cpe:2.3:o:ruijienetworks:reyeeos:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:ruijienetworks:rg-ew1200:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew1200g_pro:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew1800gx_pro:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew300_pro:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew3200gx_pro:-:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.02845
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-77
Связанные уязвимости
CVSS3: 9.8
github
почти 4 года назад
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the checkNet function in /cgi-bin/luci/api/auth.
EPSS
Процентиль: 86%
0.02845
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-77