Ruijie Networks RG-UAC Command Injection Vulnerability

Ruijie Networks RG-UAC is an Internet behavior management and auditing product from China's Ruijie Networks Ruijie Networks. It is used to solve Internet auditing problems. A command injection vulnerability exists in Ruijie Networks RG-UAC version 1.0, which stems from the fact that incorrect...

PT-2024-4403 · Ruijie · Ruijie Rg-Uac

Name of the Vulnerable Software and Affected Versions: Ruijie RG-UAC version 1.0 Description: The issue exists due to insufficient input validation in the get ip.addr details function of the /view/vpn/autovpn/sxh vpnlic.php file. This allows a remote attacker to execute arbitrary commands by...