Lucene search

K
nvd[email protected]NVD:CVE-2023-50993
HistoryDec 20, 2023 - 10:15 p.m.

CVE-2023-50993

2023-12-2022:15:35
CWE-78
web.nvd.nist.gov
1
ruijie ws6008
ws6108
ac_rgos11.9(6)w3b2_g2c6-01_10221911
command injection
vulnerability

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

29.6%

Ruijie WS6008 v1.x v2.x AC_RGOS11.9(6)W3B2_G2C6-01_10221911 and WS6108 v1.x AC_RGOS11.9(6)W3B2_G2C6-01_10221911 was discovered to contain a command injection vulnerability via the function downFiles.

Affected configurations

Nvd
Node
ruijierg-ws6008Match2.0
AND
ruijierg-ws6008_firmwareMatch11.9\(6\)w3b2_g2c6-01_10221911
Node
ruijierg-ws6008Match1.0
AND
ruijierg-ws6008_firmwareMatch11.9\(6\)w3b2_g2c6-01_10221911
Node
ruijierg-ws6108Match1.0
AND
ruijierg-ws6108_firmwareMatch11.9\(6\)w3b2_g2c6-01_10221911
VendorProductVersionCPE
ruijierg-ws60082.0cpe:2.3:h:ruijie:rg-ws6008:2.0:*:*:*:*:*:*:*
ruijierg-ws6008_firmware11.9(6)w3b2_g2c6-01_10221911cpe:2.3:o:ruijie:rg-ws6008_firmware:11.9\(6\)w3b2_g2c6-01_10221911:*:*:*:*:*:*:*
ruijierg-ws60081.0cpe:2.3:h:ruijie:rg-ws6008:1.0:*:*:*:*:*:*:*
ruijierg-ws61081.0cpe:2.3:h:ruijie:rg-ws6108:1.0:*:*:*:*:*:*:*
ruijierg-ws6108_firmware11.9(6)w3b2_g2c6-01_10221911cpe:2.3:o:ruijie:rg-ws6108_firmware:11.9\(6\)w3b2_g2c6-01_10221911:*:*:*:*:*:*:*

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

29.6%

Related for NVD:CVE-2023-50993