4 matches found
CVE-2023-3608
A vulnerability was found in Ruijie BCR810W 2.5.10. It has been rated as critical. This issue affects some unknown processing of the component Tracert Page. The manipulation leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may b...
Ruijie BCR810W/BCR860 vulnerable to OS command injection
Overview Network router BCR810W/BCR860 provided by Ruijie Networks Co., Ltd. contains an OS command injection vulnerability CVE-2023-3608, CWE-78. Note that this vulnerability can only be exploited when the BCOS port of the product is connected to the Internet. JPCERT/CC has confirmed attacks...
CVE-2023-3608
creationtimestamp| type| source ---|---|--- 2023-07-11 02:24:04+00:00| seen| https://t.me/cibsecurity/66318 2024-11-13 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities - 2024-11-13 2024-11-14 00:00:00+00:00| exploited| The Shadowserver...
CVE-2023-3608
CVE-2023-3608 affects Ruijie BCR810W 2.5.10, specifically the Tracert Page component, with OS command injection as the underlying issue. Multiple connected sources corroborate remote-exploitation potential and public disclosure. JVNDB notes exploitation attempts and identifies a fix: firmware BCO...