Lucene search
K

50 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:57 a.m.3 views

CVE-2023-4415

A vulnerability was found in Ruijie RG-EW1200G 07161417 r483. It has been rated as critical. Affected by this issue is some unknown functionality of the file /api/sys/login. The manipulation leads to improper authentication. The attack may be launched remotely. The exploit has been disclosed to t...

8.8CVSS7.2AI score0.56147EPSS
Exploits5References1
RedhatCVE
RedhatCVE
added 2025/12/12 1:6 a.m.7 views

CVE-2025-56090

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

8.8CVSS7.9AI score0.02627EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/12 1:6 a.m.7 views

CVE-2025-56095

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS7.9AI score0.02486EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/12 1:6 a.m.5 views

CVE-2025-56123

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

8.8CVSS7.9AI score0.02308EPSS
Exploits1References1
NVD
NVD
added 2025/12/11 7:15 p.m.7 views

CVE-2025-56123

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

8.8CVSS0.02308EPSS
Exploits1References3
OSV
OSV
added 2025/12/11 7:15 p.m.3 views

CVE-2025-56123

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

8.8CVSS6.1AI score0.02308EPSS
Exploits1References3
NVD
NVD
added 2025/12/11 7:15 p.m.8 views

CVE-2025-56095

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS0.02486EPSS
Exploits1References3
OSV
OSV
added 2025/12/11 7:15 p.m.9 views

CVE-2025-56095

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS6.1AI score0.02486EPSS
Exploits1References3
NVD
NVD
added 2025/12/11 6:16 p.m.4 views

CVE-2025-56090

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

8.8CVSS0.02627EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.3 views

CVE-2025-56090

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

7.5AI score0.02627EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.3 views

Ruijie RG-EW1200G PRO 安全漏洞

Ruijie RG-EW1200G PRO is a wireless router from China Ruijie Ruijie. A security vulnerability exists in the Ruijie RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 versions, which originates from unverified input to the moduleset function in the file /usr/local/lua/devconfig/configretain.lua, which could...

8.8CVSS7.2AI score0.02627EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.3 views

CVE-2025-56095

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.5AI score0.02486EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.8 views

PT-2025-50665

Name of the Vulnerable Software and Affected Versions Ruijie RG-EW1200G PRO versions 1.00 through 4.00 Description An issue exists in Ruijie RG-EW1200G PRO that allows attackers to execute arbitrary commands. This is due to an OS Command Injection flaw within the nbr cwmp.lua file located at...

8.8CVSS7.4AI score0.02486EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.6 views

PT-2025-50660

Name of the Vulnerable Software and Affected Versions Ruijie RG-EW1200G PRO versions 1.00 through 4.00 Description An OS Command Injection issue exists in Ruijie RG-EW1200G PRO. Attackers can execute arbitrary commands by sending a specially crafted POST request to the module set within the...

8.8CVSS7.6AI score0.02627EPSS
Exploits1References5
CVE
CVE
added 2025/12/11 12:0 a.m.32 views

CVE-2025-56123

CVE-2025-56123 affects Ruijie RG-EW1200G PRO (versions 1.00–4.00). The issue is an OS Command Injection via a crafted POST request to module_get in /usr/local/lua/dev_sta/networkConnect.lua, enabling arbitrary command execution. Root cause relates to improper handling of crafted input, leading to...

8.8CVSS7.5AI score0.02308EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.12 views

CVE-2025-56095

Ruijie RG-EW1200G PRO devices (V1.00–V4.00) are reported vulnerable to OS Command Injection via an crafted POST to module_set in /usr/local/lua/dev_sta/nbr_cwmp.lua. Root cause is unverified/unsafely handled input in nbr_cwmp.lua, enabling arbitrary command execution with network access. Affected...

8.8CVSS7.5AI score0.02486EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.14 views

CVE-2025-56090

The CVE-2025-56090 issue affects Ruijie RG-EW1200G PRO devices (V1.00–V4.00). It is an OS command injection vulnerability where unvalidated input in the file /usr/local/lua/dev_config/config_retain.lua allows an attacker to execute arbitrary commands via a crafted POST to the module_set function....

8.8CVSS7.5AI score0.02627EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.3 views

CVE-2025-56123

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

7.5AI score0.02308EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.8 views

PT-2025-50687

Name of the Vulnerable Software and Affected Versions Ruijie RG-EW1200G PRO versions 1.00 through 4.00 Description An OS Command Injection issue exists in Ruijie RG-EW1200G PRO. Attackers can execute arbitrary commands by sending a specially crafted POST request to the module get function within...

8.8CVSS7.6AI score0.02308EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.4 views

Ruijie RG-EW1200G PRO 安全漏洞

Ruijie RG-EW1200G PRO is a wireless router from China Ruijie Ruijie. A security vulnerability exists in Ruijie RG-EW1200G PRO version V1.00/V2.00/V3.00/V4.00, which originates from an unverified input to the moduleset function in the file /usr/local/lua/devsta/nbrcwmp.lua, which could lead to an ...

8.8CVSS7.2AI score0.02486EPSS
Exploits1References3
Rows per page
Query Builder