Lucene search
+L

19 matches found

redhatcve
redhatcve
added 2026/01/07 9:32 a.m.8 views

CVE-2019-16640

An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the class UploadFile is mishandled %00 and /var/./html are not checked, which can allow an attacker to upload any file to the gateway. This affects EG-2000SE EGRGOS 11.9 B11P1...

7.5CVSS6.9AI score0.00442EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/07 9:32 a.m.11 views

CVE-2019-16639

An issue was found on the Ruijie EG-2000 series gateway. There is a newcli.php API interface without access control, which can allow an attacker who only has web interface access to use TELNET commands and/or show admin passwords via the modeurl=exec= substring. This affects EG-2000SE EGRGOS 11.9...

9.8CVSS7.1AI score0.00822EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/01/07 9:31 a.m.8 views

CVE-2019-16641

An issue was found on the Ruijie EG-2000 series gateway. There is a buffer overflow in client.so. Consequently, an attacker can use login.php to login to any account, without providing its password. This affects EG-2000SE EGRGOS 11.11B1...

8.4CVSS7.4AI score0.00301EPSS
Exploits1References1
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-19356

Malware in sbrugna...

7.5CVSS6.4AI score0.00388EPSS
Exploits1References2
nvd
nvd
added 2024/07/16 5:15 p.m.28 views

CVE-2019-16640

An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the class UploadFile is mishandled %00 and /var/./html are not checked, which can allow an attacker to upload any file to the gateway. This affects EG-2000SE EGRGOS 11.9 B11P1...

7.5CVSS0.00442EPSS
Exploits0References1
nvd
nvd
added 2024/07/16 5:15 p.m.30 views

CVE-2019-16638

An issue was found on the Ruijie EG-2000 series gateway. An attacker can easily dump cleartext stored passwords in /data/config.text with simple XORs. This affects EG-2000SE EGRGOS 11.11B1...

7.5CVSS0.00388EPSS
Exploits1References1
nvd
nvd
added 2024/07/16 5:15 p.m.26 views

CVE-2019-16641

An issue was found on the Ruijie EG-2000 series gateway. There is a buffer overflow in client.so. Consequently, an attacker can use login.php to login to any account, without providing its password. This affects EG-2000SE EGRGOS 11.11B1...

8.4CVSS0.00301EPSS
Exploits1References1
nvd
nvd
added 2024/07/16 5:15 p.m.30 views

CVE-2019-16639

An issue was found on the Ruijie EG-2000 series gateway. There is a newcli.php API interface without access control, which can allow an attacker who only has web interface access to use TELNET commands and/or show admin passwords via the modeurl=exec&command= substring. This affects EG-2000SE...

9.8CVSS0.00822EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2024/07/16 12:0 a.m.9 views

CVE-2019-16638

An issue was found on the Ruijie EG-2000 series gateway. An attacker can easily dump cleartext stored passwords in /data/config.text with simple XORs. This affects EG-2000SE EGRGOS 11.11B1...

6.6AI score0.00388EPSS
Exploits1References1
cve
cve
added 2024/07/16 12:0 a.m.81 views

CVE-2019-16639

Summary: CVE-2019-16639 affects Ruijie EG-2000 series gateways, notably EG-2000SE and EG_RGOS 11.9 B11P1. The issue is a newcli.php API interface without access control, enabling an attacker who has web interface access to run TELNET commands and potentially view admin passwords via the mode_url=...

9.8CVSS7.1AI score0.00822EPSS
Exploits1References1Affected Software1
vulnrichment
vulnrichment
added 2024/07/16 12:0 a.m.8 views

CVE-2019-16641

An issue was found on the Ruijie EG-2000 series gateway. There is a buffer overflow in client.so. Consequently, an attacker can use login.php to login to any account, without providing its password. This affects EG-2000SE EGRGOS 11.11B1...

8.6AI score0.00301EPSS
Exploits1References1
cvelist
cvelist
added 2024/07/16 12:0 a.m.21 views

CVE-2019-16638

An issue was found on the Ruijie EG-2000 series gateway. An attacker can easily dump cleartext stored passwords in /data/config.text with simple XORs. This affects EG-2000SE EGRGOS 11.11B1...

0.00388EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2024/07/16 12:0 a.m.11 views

CVE-2019-16639

An issue was found on the Ruijie EG-2000 series gateway. There is a newcli.php API interface without access control, which can allow an attacker who only has web interface access to use TELNET commands and/or show admin passwords via the modeurl=exec&command= substring. This affects EG-2000SE...

7.1AI score0.00822EPSS
Exploits1References1
vulnrichment
vulnrichment
added 2024/07/16 12:0 a.m.31 views

CVE-2019-16640

An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the class UploadFile is mishandled %00 and /var/./html are not checked, which can allow an attacker to upload any file to the gateway. This affects EG-2000SE EGRGOS 11.9 B11P1...

7.1AI score0.00442EPSS
Exploits0References1
cvelist
cvelist
added 2024/07/16 12:0 a.m.30 views

CVE-2019-16639

An issue was found on the Ruijie EG-2000 series gateway. There is a newcli.php API interface without access control, which can allow an attacker who only has web interface access to use TELNET commands and/or show admin passwords via the modeurl=exec&command= substring. This affects EG-2000SE...

0.00822EPSS
Exploits1References1
cvelist
cvelist
added 2024/07/16 12:0 a.m.17 views

CVE-2019-16640

An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the class UploadFile is mishandled %00 and /var/./html are not checked, which can allow an attacker to upload any file to the gateway. This affects EG-2000SE EGRGOS 11.9 B11P1...

0.00442EPSS
Exploits0References1
cve
cve
added 2024/07/16 12:0 a.m.58 views

CVE-2019-16638

The CVE-2019-16638 affects Ruijie EG-2000 series gateways (EG-2000SE, EG_RGOS) with version 11.1(1)B1. Description: an attacker can dump cleartext passwords stored in /data/config.text via simple XORs. Impact is credential disclosure with restricted integrity/availability. The Red Hat/RedHat and ...

7.5CVSS6.7AI score0.00388EPSS
Exploits1References1Affected Software1
cve
cve
added 2024/07/16 12:0 a.m.52 views

CVE-2019-16640

The CVE-2019-16640 issue affects Ruijie EG-2000SE gateway (and EG_RGOS) via upload.php and the UploadFile class. A mishandled parameter allows uploading arbitrary files because %00 and /var/./html are not checked, enabling potential attacks on the gateway. Affected versions include 11.9 B11P1 (EG...

7.5CVSS7AI score0.00442EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2019/09/20 12:0 a.m.8 views

PT-2019-6427 · Ruijie · Ruijie Eg-2000 Series Gateway

Name of the Vulnerable Software and Affected Versions: Ruijie EG-2000 series gateway versions 11.11B1 Description: The issue affects the Ruijie EG-2000 series gateway, where an attacker can easily dump cleartext stored passwords in /data/config.text using simple XORs. This allows a remote attacke...

7.5CVSS6.7AI score0.00388EPSS
Exploits1References6
Rows per page
Query Builder