Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-4169
HistoryAug 05, 2023 - 6:15 p.m.

Improper access control

2023-08-0518:15:00
PRIOn knowledge base
www.prio-n.com
9
improper access control
remote attack
api manipulation
critical vulnerability
vendor non-response
vdb-236185

8.7 High

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.1%

JSON

A vulnerability was found in Ruijie RG-EW1200G 1.0(1)B1P5. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /api/sys/set_passwd of the component Administrator Password Handler. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-236185 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

CPENameOperatorVersion
rg-ew1200g_firmwareeq1.1.0-b1-p5

Related

cve 1
cvelist 1
nuclei 1
nvd 1
cve
cve
CVE-2023-4169
2023-08-05 18:15:17
cvelist
cvelist
CVE-2023-4169 Ruijie RG-EW1200G Administrator Password set_passwd access control
2023-08-05 18:00:06
nuclei
nuclei
Ruijie RG-EW1200G Router - Password Reset
2023-10-31 08:19:08
nvd
nvd
CVE-2023-4169
2023-08-05 18:15:17

8.7 High

AI Score

Confidence

High

0.011 Low

EPSS

Percentile

84.1%

JSON
Related for PRION:CVE-2023-4169
cve1cvelist1nuclei1nvd1