Lucene search
+L

26 matches found

RedhatCVE
RedhatCVE
added 2025/12/12 1:6 a.m.10 views

CVE-2025-56111

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the networksetwanconf in file /usr/lib/lua/luci/controller/admin/netport.lua...

8.8CVSS7.9AI score0.02769EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/12 1:6 a.m.5 views

CVE-2025-56109

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actionwireless in file /usr/lib/lua/luci/control/admin/wireless.lua...

8.8CVSS7.9AI score0.02769EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/12 1:6 a.m.7 views

CVE-2025-56088

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actionservice in file /usr/lib/lua/luci/controller/admin/service.lua...

8.8CVSS7.9AI score0.03241EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/12 1:6 a.m.7 views

CVE-2025-56110

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actiondealupdate in file /usr/lib/lua/luci/controller/api/rcmsAPI.lua...

8.8CVSS7.9AI score0.02769EPSS
Exploits1References1
OSV
OSV
added 2025/12/11 7:15 p.m.5 views

CVE-2025-56111

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the networksetwanconf in file /usr/lib/lua/luci/controller/admin/netport.lua...

8.8CVSS6.1AI score0.02769EPSS
Exploits1References3
NVD
NVD
added 2025/12/11 7:15 p.m.18 views

CVE-2025-56109

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actionwireless in file /usr/lib/lua/luci/control/admin/wireless.lua...

8.8CVSS0.02769EPSS
Exploits1References3
NVD
NVD
added 2025/12/11 6:16 p.m.7 views

CVE-2025-56088

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actionservice in file /usr/lib/lua/luci/controller/admin/service.lua...

8.8CVSS0.03241EPSS
Exploits1References3
EUVD
EUVD
added 2025/12/11 12:0 a.m.7 views

EUVD-2025-202743

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actionservice in file /usr/lib/lua/luci/controller/admin/service.lua...

7.3AI score0.03241EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.5 views

CVE-2025-56111

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the networksetwanconf in file /usr/lib/lua/luci/controller/admin/netport.lua...

7.5AI score0.02769EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.5 views

CVE-2025-56110

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actiondealupdate in file /usr/lib/lua/luci/controller/api/rcmsAPI.lua...

7.5AI score0.02769EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.30 views

CVE-2025-56129

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actiondiagnosis in file /usr/lib/lua/luci/controller/admin/diagnosis.lua...

0.02398EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.5 views

CVE-2025-56088

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actionservice in file /usr/lib/lua/luci/controller/admin/service.lua...

7.5AI score0.03241EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.8 views

PT-2025-50678

Name of the Vulnerable Software and Affected Versions Ruijie RG-BCR RG-BCR860 affected versions not specified Description An issue exists in Ruijie RG-BCR RG-BCR860 that allows attackers to execute arbitrary commands. This is possible through a crafted POST request to the action wireless endpoint...

8.8CVSS7.2AI score0.02769EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.37 views

CVE-2025-56110

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actiondealupdate in file /usr/lib/lua/luci/controller/api/rcmsAPI.lua...

0.02769EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.37 views

CVE-2025-56088

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actionservice in file /usr/lib/lua/luci/controller/admin/service.lua...

0.03241EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.8 views

PT-2025-50680

Name of the Vulnerable Software and Affected Versions Ruijie RG-BCR RG-BCR860 affected versions not specified Description An issue exists that allows attackers to execute arbitrary commands. This can be achieved by sending a specially crafted POST request to the...

8.8CVSS7.3AI score0.02769EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.4 views

CVE-2025-56109

OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actionwireless in file /usr/lib/lua/luci/control/admin/wireless.lua...

7.5AI score0.02769EPSS
Exploits1References3
CVE
CVE
added 2025/12/11 12:0 a.m.23 views

CVE-2025-56129

Summary: CVE-2025-56129 is an OS command injection in Ruijie RG-BCR RG-BCR860. The issue occurs when processing a crafted POST to /usr/lib/lua/luci/controller/admin/diagnosis.lua (diagnosis action), enabling arbitrary command execution. The Red Hat, EUVD ENISA, NVD, CNNVD, and CVE sources corrobo...

8.8CVSS7.5AI score0.02398EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.8 views

PT-2025-50690

Name of the Vulnerable Software and Affected Versions Ruijie RG-BCR RG-BCR860 affected versions not specified Description An issue exists in Ruijie RG-BCR RG-BCR860 that allows attackers to execute arbitrary commands. This is possible through a crafted POST request to the action diagnosis endpoin...

8.8CVSS7AI score0.02398EPSS
Exploits1References6
CVE
CVE
added 2025/12/11 12:0 a.m.17 views

CVE-2025-56110

CVE-2025-56110 describes an OS command injection affecting Ruijie RG-BCR RG-BCR860. The vulnerability arises from handling of a crafted POST request to the function at /usr/lib/lua/luci/controller/api/rcmsAPI.lua (action_deal_update), allowing an attacker to execute arbitrary commands. Reported C...

8.8CVSS7.5AI score0.02769EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder