4 matches found
CVE-2025-56129
OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actiondiagnosis in file /usr/lib/lua/luci/controller/admin/diagnosis.lua...
PT-2025-50690
Name of the Vulnerable Software and Affected Versions Ruijie RG-BCR RG-BCR860 affected versions not specified Description An issue exists in Ruijie RG-BCR RG-BCR860 that allows attackers to execute arbitrary commands. This is possible through a crafted POST request to the action diagnosis endpoin...
CVE-2025-56129
OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the actiondiagnosis in file /usr/lib/lua/luci/controller/admin/diagnosis.lua...
CVE-2025-56129
Summary: CVE-2025-56129 is an OS command injection in Ruijie RG-BCR RG-BCR860. The issue occurs when processing a crafted POST to /usr/lib/lua/luci/controller/admin/diagnosis.lua (diagnosis action), enabling arbitrary command execution. The Red Hat, EUVD ENISA, NVD, CNNVD, and CVE sources corrobo...