40 matches found
Ruijie Switch eWeb S29_RGOS path traversal vulnerability
Ruijie Switch eWeb S29RGOS is a web management interface system developed by the Chinese company Ruijie. The version 11.4 of Ruijie Switch eWeb S29RGOS contains a path traversal vulnerability. This vulnerability stems from the /download.do endpoint, which allows for directory traversal, potential...
PT-2026-5289
Name of the Vulnerable Software and Affected Versions Ruijie Networks Switch eWeb S29 RGOS version 11.4 Description The software contains a directory traversal flaw that permits unauthenticated attackers to access sensitive configuration files by manipulating file path parameters. Attackers can...
CVE-2020-36870
Various Ruijie Gateway EG and NBR models firmware versions 11.16B9P1 11.94B12P1 contain a code execution vulnerability in the EWEB management system that can be abused via front-end functionality. Attackers can exploit front-end code when features such as guest authentication, local server...
EUVD-2020-30818
Various Ruijie Gateway EG and NBR models firmware versions 11.16B9P1 11.94B12P1 contain a code execution vulnerability in the EWEB management system that can be abused via front-end functionality. Attackers can exploit front-end code when features such as guest authentication, local server...
CVE-2020-36870
Various Ruijie Gateway EG and NBR models firmware versions 11.16B9P1 11.94B12P1 contain a code execution vulnerability in the EWEB management system that can be abused via front-end functionality. Attackers can exploit front-end code when features such as guest authentication, local server...
CVE-2020-36870 Ruijie Gateway EG & NBR Models v11.1(6)B9P1 - 11.9(4)B12P1 RCE
Various Ruijie Gateway EG and NBR models firmware versions 11.16B9P1 11.94B12P1 contain a code execution vulnerability in the EWEB management system that can be abused via front-end functionality. Attackers can exploit front-end code when features such as guest authentication, local server...
CVE-2020-36870
CVE-2020-36870 affects Ruijie Gateway EG and Ruijie NBR series (firmware versions 11.1(6)B9P1 through 11.9(4)B12P1 are vulnerable). Root cause is a code execution vulnerability in the EWEB management system that can be abused via front-end functionality; when features such as guest authentication...
VulnCheck KEV: CVE-2020-36870
Various Ruijie Gateway EG and NBR models firmware versions 11.16B9P1 11.94B12P1 contain a code execution vulnerability in the EWEB management system that can be abused via front-end functionality. Attackers can exploit front-end code when features such as guest authentication, local server...
Screen SFT DAB 600/C - Unauthenticated Information Disclosure Vulnerability
Exploit Title: Screen SFT DAB 600/C - Unauthenticated Information Disclosure userManager.cgx Exploit Author: LiquidWorm Vendor: DB Elettronica Telecomunicazioni SpA Product web page: https://www.screen.it | https://www.dbbroadcast.com...
Screen SFT DAB 600/C - Unauthenticated Information Disclosure (userManager.cgx)
Exploit Title: Screen SFT DAB 600/C - Unauthenticated Information Disclosure userManager.cgx Exploit Author: LiquidWorm Vendor: DB Elettronica Telecomunicazioni SpA Product web page: https://www.screen.it | https://www.dbbroadcast.com...
Screen SFT DAB 600/C Authentication Bypass Erase Account Exploit
Summary Screen's new radio DAB Transmitter is reaching the highest technology level in both Digital Signal Processing and RF domain. SFT DAB Series - Compact Radio DAB Transmitter - Air. Thanks to the digital adaptive precorrection and configuatio flexibility, the Hot Swap System technology, the...
Screen SFT DAB 600/C Unauthenticated Information Disclosure (userManager.cgx)
Summary Screen's new radio DAB Transmitter is reaching the highest technology level in both Digital Signal Processing and RF domain. SFT DAB Series - Compact Radio DAB Transmitter - Air. Thanks to the digital adaptive precorrection and configuatio flexibility, the Hot Swap System technology, the...
File Download Vulnerability in EWEB Network Management System of Beijing StarNet Ruijie Network Technology Co.
Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products and storage. A file download vulnerability exists in the EWEB network management system of Beijing StarN...
afrog
PoC exploit for CNVD-2021-09650, a vulnerability in the 锐捷网络股份有限公司NBR路由器EWEB网管系统. The exploit targets the system's web interface, allowing an attacker to gain unauthorized access. The vulnerability is a high-severity issue, and the exploit demonstrates how an attacker can bypass authentication an...
Rockwell Automation ControlLogix controllers Exposure of Sensitive Information to an Unauthorized Actor (CVE-2012-6441)
Rockwell Automation EtherNet/IP products; 1756-ENBT, 1756-EWEB, 1768-ENBT, and 1768-EWEB communication modules allow remote attackers to obtain sensitive information via a crafted CIP packet. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
Command Execution Vulnerability in Ruijie Networks - EWEB Network Management System (CNVD-2021-40747)
Ltd. is a company mainly engaged in information system integration services; Internet virtual private network services; Internet management services and other items. A command execution vulnerability exists in the Ruijie Network-EWEB network management system, which can be exploited by an attacke...
Command Execution Vulnerability in Ruijie Networks - EWEB Network Management System (CNVD-2021-40746)
Ltd. is a company mainly engaged in information system integration services; Internet virtual private network services; Internet management services and other items. A command execution vulnerability exists in the Ruijie Network-EWEB network management system, which can be exploited by an attacke...
Unauthorized Access Vulnerability in Riptide EWEB Management System (CNVD-2021-37444)
Ltd. is a company mainly engaged in information system integration services; Internet virtual private network services; Internet management services and other items. An unauthorized access vulnerability exists in the Ruijie EWEB management system, which can be exploited by attackers to obtain...
Unauthorized Access Vulnerability in Riptide EWEB Management System
Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products, storage, and more. An unauthorized access vulnerability exists in the Ruijie EWEB management system,...
Command Execution Vulnerability in NBR Router EWEB Network Management System at Riptide Networks Inc.
Ruijie Networks is a specialized network vendor with a full range of network equipment product lines and solutions, including switches, routers, software, security firewalls, wireless products, storage, and more. A command execution vulnerability exists in the EWEB network management system of...