Lucene search
K

33 matches found

RedhatCVE
RedhatCVE
added 2025/11/26 4:56 p.m.5 views

CVE-2023-7330

Ruijie NBR series routers contain an unauthenticated arbitrary file upload vulnerability via /ddi/server/fileupload.php. The endpoint accepts attacker-supplied values in the name and uploadDir parameters and saves the provided multipart file content without adequate validation or sanitization of...

9.3CVSS8.2AI score0.00539EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/24 9:31 p.m.5 views

EUVD-2025-198992

Ruijie NBR series routers contain an unauthenticated arbitrary file upload vulnerability via /ddi/server/fileupload.php. The endpoint accepts attacker-supplied values in the name and uploadDir parameters and saves the provided multipart file content without adequate validation or sanitization of...

9.3CVSS7.7AI score0.00539EPSS
Exploits0References7
NVD
NVD
added 2025/11/24 9:16 p.m.10 views

CVE-2023-7330

Ruijie NBR series routers contain an unauthenticated arbitrary file upload vulnerability via /ddi/server/fileupload.php. The endpoint accepts attacker-supplied values in the name and uploadDir parameters and saves the provided multipart file content without adequate validation or sanitization of...

9.3CVSS0.00539EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/11/24 12:0 a.m.13 views

PT-2025-47958

Name of the Vulnerable Software and Affected Versions Ruijie NBR series routers affected versions not specified Description Ruijie NBR series routers contain an unauthenticated arbitrary file upload issue via the /ddi/server/fileupload.php endpoint. The endpoint accepts attacker-controlled values...

9.3CVSS7.7AI score0.00539EPSS
Exploits0References9
VulnCheck KEV
VulnCheck KEV
added 2025/11/24 12:0 a.m.14 views

VulnCheck KEV: CVE-2023-7330

Ruijie NBR series routers contain an unauthenticated arbitrary file upload vulnerability via /ddi/server/fileupload.php. The endpoint accepts attacker-supplied values in the name and uploadDir parameters and saves the provided multipart file content without adequate validation or sanitization of...

9.3CVSS6.4AI score0.00539EPSS
In wildExploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-52879

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0129EPSS
Exploits2References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-34731

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00379EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/04 2:22 p.m.14 views

CVE-2025-34057

An information disclosure vulnerability exists in Ruijie NBR series routers known to affect NBR2000G, NBR1300G, and NBR1000 models via the /WEBVMS/LEVEL15/ endpoint. By crafting a specific POST request with modified Cookie headers and specially formatted parameters, an unauthenticated attacker ca...

8.7CVSS6.5AI score0.06444EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2025/07/02 12:0 a.m.3 views

VulnCheck KEV: CVE-2025-34057

An information disclosure vulnerability exists in Ruijie NBR series routers known to affect NBR2000G, NBR1300G, and NBR1000 models via the /WEBVMS/LEVEL15/ endpoint. By crafting a specific POST request with modified Cookie headers and specially formatted parameters, an unauthenticated attacker ca...

8.7CVSS5.8AI score0.06444EPSS
In wildExploits0References57
RedhatCVE
RedhatCVE
added 2025/05/23 1:52 a.m.6 views

CVE-2023-48849

Ruijie EG Series Routers version EG3.01B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering...

9.8CVSS8AI score0.0129EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/02/14 10:38 a.m.9 views

CVE-2023-30308

An issue discovered in Ruijie EG210G-P, Ruijie EG105G-V2, Ruijie NBR, and Ruijie EG105G routers allows attackers to hijack TCP sessions which could lead to a denial of service...

6.5CVSS6.8AI score0.00379EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2024/12/05 12:0 a.m.6 views

VulnCheck KEV: CVE-2021-43163

A Remote Code Execution RCE vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW3.01B11P55 via the checkNet function in /cgi-bin/luci/api/auth...

9.8CVSS5.8AI score0.01933EPSS
Exploits0References1
NVD
NVD
added 2024/05/28 8:16 p.m.21 views

CVE-2023-30308

An issue discovered in Ruijie EG210G-P, Ruijie EG105G-V2, Ruijie NBR, and Ruijie EG105G routers allows attackers to hijack TCP sessions which could lead to a denial of service...

6.5CVSS6.5AI score0.00379EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/05/28 7:37 p.m.29 views

CVE-2023-30308

An issue discovered in Ruijie EG210G-P, Ruijie EG105G-V2, Ruijie NBR, and Ruijie EG105G routers allows attackers to hijack TCP sessions which could lead to a denial of service...

6.5AI score0.00379EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/05/28 7:37 p.m.16 views

CVE-2023-30308

An issue discovered in Ruijie EG210G-P, Ruijie EG105G-V2, Ruijie NBR, and Ruijie EG105G routers allows attackers to hijack TCP sessions which could lead to a denial of service...

7AI score0.00379EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/05/28 12:0 a.m.6 views

PT-2024-12228 · Ruijie · Ruijie Eg105G +3

Name of the Vulnerable Software and Affected Versions: Ruijie EG210G-P affected versions not specified Ruijie EG105G-V2 affected versions not specified Ruijie NBR affected versions not specified Ruijie EG105G affected versions not specified Description: An issue in the mentioned Ruijie routers...

6.5CVSS6.4AI score0.00379EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2024/04/02 12:0 a.m.7 views

The vulnerability of the vpnAction function (/itbox_pi/vpn_quickset_service.php?a=set_vpn) in the microprogramming software for Ruijie’s RG-EG series routers allows a hacker to execute arbitrary commands.

The vulnerability of the vpnAction function /itboxpi/vpnquicksetservice.php?a=setvpn of the Ruijie RG-EG series router microprogramming software is related to the failure to eliminate special elements used in the operating system commands. Exploiting this vulnerability allows a remote attacker to...

6.5CVSS6.9AI score0.03747EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2023/12/06 8:15 a.m.4 views

CVE-2023-48849

Ruijie EG Series Routers version EG3.01B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering...

9.8CVSS7.6AI score0.0129EPSS
Exploits2References2
OSV
OSV
added 2023/12/06 8:15 a.m.5 views

CVE-2023-48849

Ruijie EG Series Routers version EG3.01B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering...

9.8CVSS6AI score0.0129EPSS
Exploits2References1
GithubExploit
GithubExploit
added 2023/12/01 11:24 a.m.66 views

Exploit for CVE-2023-48849

CVE-2023-48849 Ruijie EG Series Routers firmware =EG3.01B...

9.8CVSS9.9AI score0.0129EPSS
Exploits2
Rows per page
Query Builder