4 matches found
CVE-2025-65363
Authenticated append-style command-injection Ruijie APs APRGOS 11.1.x allows an authenticated web user to execute appended shell expressions as root, enabling file disclosure, device disruption, and potential network pivoting via the command parameter to the webaction.do endpoint...
CVE-2025-65363
Authenticated append-style command-injection Ruijie APs APRGOS 11.1.x allows an authenticated web user to execute appended shell expressions as root, enabling file disclosure, device disruption, and potential network pivoting via the command parameter to the webaction.do endpoint...
EUVD-2025-201720
Authenticated append-style command-injection Ruijie APs APRGOS 11.1.x allows an authenticated web user to execute appended shell expressions as root, enabling file disclosure, device disruption, and potential network pivoting via the command parameter to the webaction.do endpoint...
CVE-2025-65363
CVE-2025-65363 affects Ruijie AP_RGOS 11.1.x. An authenticated web user can inject appended shell expressions via the command parameter to the web_action.do endpoint, executing as root and enabling file disclosure, device disruption, and potential network pivoting. Reports across multiple sources...