Lucene search
K

25167 matches found

Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.7 views

PT-2025-50677

Name of the Vulnerable Software and Affected Versions Ruijie X30-PRO version X30-PRO-V1 09241521 Description An OS Command Injection issue exists in Ruijie X30-PRO version X30-PRO-V1 09241521. Attackers can execute arbitrary commands by sending a specially crafted POST request to the pwdmodify...

8.8CVSS7.4AI score0.02324EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.29 views

CVE-2025-56089

OS Command Injection vulnerability in Ruijie M18 EW3.01B11P226M1810223116 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

0.02482EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.25 views

CVE-2025-56079

OS Command Injection vulnerability in Ruijie RG-EW1300G EW1300G V1.00/V2.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

0.02482EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.1 views

CVE-2025-56093

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the setWisp in file /usr/lib/lua/luci/modules/wireless.lua...

7.5AI score0.02755EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.3 views

CVE-2025-56120

OS Command Injection vulnerability in Ruijie X60 PRO X6010212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

7.5AI score0.02308EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.5 views

PT-2025-50658

Name of the Vulnerable Software and Affected Versions Ruijie RG-BCR RG-BCR860 affected versions not specified Description An issue exists that allows attackers to execute arbitrary commands. This can be triggered by sending a specially crafted POST request to the action service within the file...

8.8CVSS7AI score0.03121EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.2 views

CVE-2025-56097

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226EW1800GX-PRO10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

7.5AI score0.02244EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.5 views

PT-2025-50662

Name of the Vulnerable Software and Affected Versions Ruijie X30 PRO V1 X30-PRO-V1 09241521 Description An issue exists in Ruijie X30 PRO V1 X30-PRO-V1 09241521 that allows attackers to execute arbitrary commands. This is possible through a crafted POST request to the module get function within t...

8.8CVSS7AI score0.02627EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.4 views

IGEL OS UMS Discovery Service Detection

Binary data igelosumsdiscoveryservicedetect.nbin...

7AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.4 views

PT-2025-50656

Name of the Vulnerable Software and Affected Versions Ruijie RG-EW1200 versions EW 3.01B11P227 EW1200 11130208RG-EW1200 V1.00 Description An OS Command Injection issue exists in Ruijie RG-EW1200. Attackers can execute arbitrary commands by sending a specially crafted POST request to the module ge...

8.8CVSS7.7AI score0.02627EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.5 views

Ruijie RG-EW1200 安全漏洞

Ruijie RG-EW1200 is a wireless router from Ruijie China. A security vulnerability exists in the Ruijie RG-EW1200 that originates from unverified input to the moduleset function in the file /usr/local/lua/devconfig/configretain.lua, which could lead to an OS command injection attack...

8.8CVSS7.2AI score0.02554EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.19 views

CVE-2025-56130

OS Command Injection vulnerability in Ruijie RG-S1930 S1930SWITCH3.01B11P230 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleupdate in file /usr/local/lua/devconfig/acesw.lua...

0.01809EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.19 views

CVE-2025-56113

OS Command Injection vulnerability in Ruijie RG-YST EST, YSTAP3.01B11P280YST250F V1.xxV2.xx allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua...

0.01451EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/11 12:0 a.m.4 views

EUVD-2025-202751

OS Command Injection vulnerability in Ruijie RG-RAP2200E 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.3AI score0.02482EPSS
Exploits1References4
CVE
CVE
added 2025/12/11 12:0 a.m.10 views

CVE-2025-56130

The CVE-2025-56130 affects Ruijie RG-S1930 series switches (S1930SWITCH_3.0(1)B11P230). AOS vulnerability: OS Command Injection via a crafted POST to the module_update endpoint in /usr/local/lua/dev_config/ace_sw.lua. Impact is arbitrary command execution with high severity (CVSS 3.1: AV:N/AC:L/P...

8.8CVSS7.5AI score0.01809EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.13 views

CVE-2025-56083

CVE-2025-56083 affects Ruijie X30-PRO with version X30-PRO-V1_09241521. The vulnerability is an OS Command Injection in the Lua file path /usr/local/lua/dev_sta/nbr_networkId_merge.lua, where unvalidated input to the module_set parameter can allow an attacker to execute arbitrary commands via a c...

8.8CVSS7.5AI score0.01748EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.11 views

CVE-2025-56088

CVE-2025-56088 affects Ruijie RG-BCR RG-BCR860. The vulnerability is an OS command injection caused by unvalidated input in the action_service endpoint at /usr/lib/lua/luci/controller/admin/service.lua, exploitable via a crafted POST request. Impact as described: arbitrary command execution with ...

8.8CVSS7.5AI score0.03121EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.18 views

CVE-2025-56122

CVE-2025-56122 affects Ruijie RG-EW1800GX PRO (B11P226_EW1800GX-PRO_10223117). The vulnerability is an OS Command Injection in the Lua module at /usr/local/lua/dev_sta/networkConnect.lua, exploitable via a crafted POST request to the module_get endpoint. CVSSv3.1 base score 8.8 (HIGH) with networ...

8.8CVSS7.5AI score0.02308EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.20 views

CVE-2025-56124

CVE-2025-56124 affects Ruijie X60 PRO routers (V1.00–V2.00). The vulnerability is an OS Command Injection in the module_get function invoked via a crafted POST to /usr/local/lua/dev_sta/networkConnect.lua, allowing an attacker to execute arbitrary commands with local privileges. Multiple sources ...

7.8CVSS7.5AI score0.01135EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.17 views

CVE-2025-56092

CVE-2025-56092 affects Ruijie X30 PRO V1 (X30-PRO-V1_09241521). The vulnerability is an OS Command Injection in the module_get function located at /usr/local/lua/dev_sta/networkConnect.lua, triggered by a crafted POST request. The CVE details indicate an attacker can execute arbitrary commands wi...

8.8CVSS7.4AI score0.02627EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder