CVE-2025-56086

OS Command Injection vulnerability in Ruijie RG-EW1200 EW3.01B11P227EW120011130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

CVE-2025-56092

OS Command Injection vulnerability in Ruijie X30 PRO V1 X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

Ruijie RG-EW1800GX PRO 安全漏洞

Ruijie RG-EW1800GX PRO is a wireless router from China Ruijie Ruijie. A security vulnerability exists in the Ruijie RG-EW1800GX PRO B11P226EW1800GX-PRO10223117 version, which originates from a specially crafted POST request to moduleget in file /usr/local/lua/devsta/networkConnect.lua. Improper...

Ruijie X60 PRO 安全漏洞

Ruijie X60 PRO is a home wireless router from China's Ruijie. A security vulnerability exists in the Ruijie X60 PRO that stems from improper handling of a specially crafted POST request for moduleget in the file /usr/local/lua/devsta/networkConnect.lua, which could lead to the execution of...

CVE-2025-56101

CVE-2025-56101 affects Ruijie M18 EW, specifically the file /usr/local/lua/dev_sta/networkConnect.lua’s module_get. The vulnerability is an OS Command Injection that can allow an attacker to execute arbitrary commands via a crafted POST request. Reported impacted version: Ruijie M18 EW_3.0(1)B11P...

CVE-2025-56086

CVE-2025-56086 affects Ruijie RG-EW1200 devices (EW_3.0(1)B11P227_EW1200_11130208RG-EW1200 V1.00). The issue is an OS command injection in the module_get function inside /usr/local/lua/dev_sta/networkConnect.lua, exploitable via a crafted POST request to that path. This could allow an attacker to...

CVE-2025-56123

CVE-2025-56123 affects Ruijie RG-EW1200G PRO (versions 1.00–4.00). The issue is an OS Command Injection via a crafted POST request to module_get in /usr/local/lua/dev_sta/networkConnect.lua, enabling arbitrary command execution. Root cause relates to improper handling of crafted input, leading to...

EUVD-2025-202745

OS Command Injection vulnerability in Ruijie RG-EW1200 EW3.01B11P227EW120011130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

Ruijie X30 PRO 安全漏洞

Ruijie X30 PRO is a home wireless router from China Ruijie Ruijie. A security vulnerability exists in the Ruijie X30 PRO X30-PRO-V109241521 version, which originates from an unvalidated input to the moduleget function in the file /usr/local/lua/devsta/networkConnect.lua, which could lead to an OS...

Ruijie M18 安全漏洞

Ruijie M18 is a WiFi router from China Ruijie Ruijie. A security vulnerability exists in Ruijie M18 EW3.01B11P226M1810223116, which originates from an unvalidated input to the moduleget function in the file /usr/local/lua/devsta/networkConnect.lua, which could lead to an OS command injection atta...

CVE-2025-56123

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

CVE-2025-56086

OS Command Injection vulnerability in Ruijie RG-EW1200 EW3.01B11P227EW120011130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

CVE-2025-56102

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226EW1800GX10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

CVE-2025-56094

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/hostaccessdelay.lua...

CVE-2025-56094

CVE-2025-56094 affects Ruijie X30-PRO (X30-PRO-V1_09241521). The issue arises from unvalidated input in the module_get function on file /usr/local/lua/dev_sta/host_access_delay.lua, enabling an OS Command Injection and potentially remote code execution via a crafted POST request. Multiple sources...

SUSE CVE-2022-48933

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix memory leak during stateful obj update stateful objects can be updated from the control plane. The transaction logic allocates a temporary object for this purpose. The -init function was called for this...

UBUNTU-CVE-2022-48933

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix memory leak during stateful obj update stateful objects can be updated from the control plane. The transaction logic allocates a temporary object for this purpose. The -init function was called for this...