Описание
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the updateVersion function in /cgi-bin/luci/api/wireless.
Ссылки
- ExploitThird Party AdvisoryVDB Entry
- Not Applicable
- Mailing ListThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- Not Applicable
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.55.1915_ew_3.0\(1\)b11p55 (включая)
Одновременно
cpe:2.3:o:ruijienetworks:reyeeos:*:*:*:*:*:*:*:*
Одно из
cpe:2.3:h:ruijienetworks:rg-ew1200:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew1200g_pro:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew1800gx_pro:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew300_pro:-:*:*:*:*:*:*:*
cpe:2.3:h:ruijienetworks:rg-ew3200gx_pro:-:*:*:*:*:*:*:*
EPSS
Процентиль: 96%
0.26281
Средний
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-78
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the updateVersion function in /cgi-bin/luci/api/wireless.
EPSS
Процентиль: 96%
0.26281
Средний
8.8 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-78