Lucene search
K

54830 matches found

Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.4 views

CVE-2025-56084

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226EW1800GX-PRO10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.5AI score0.0185EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.2 views

CVE-2025-56098

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleget in file /usr/local/lua/devsta/networkConnect.lua...

7.5AI score0.02244EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.5 views

PT-2025-50613

Name of the Vulnerable Software and Affected Versions baowzh hfly versions prior to 638ff9abe9078bc977c132b37acbe1900b63491c Description A security flaw exists due to cross site scripting in the processing of the /admin/index.php/advtext/add file within the advtext Module. The attack can be carri...

5.4CVSS3.8AI score0.00217EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.22 views

CVE-2025-56099

OS Command Injection vulnerability in Ruijie RG-YST AP3.01B11P280YST250F allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua...

0.01451EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.19 views

CVE-2025-56130

OS Command Injection vulnerability in Ruijie RG-S1930 S1930SWITCH3.01B11P230 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleupdate in file /usr/local/lua/devconfig/acesw.lua...

0.01809EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.19 views

CVE-2025-56113

OS Command Injection vulnerability in Ruijie RG-YST EST, YSTAP3.01B11P280YST250F V1.xxV2.xx allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua...

0.01451EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/11 12:0 a.m.3 views

CVE-2025-56077

OS Command Injection vulnerability in Ruijie RG-RAP2200E 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.5AI score0.02482EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/12/11 12:0 a.m.20 views

CVE-2025-56108

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua...

0.02324EPSS
Exploits1References3
EUVD
EUVD
added 2025/12/11 12:0 a.m.4 views

EUVD-2025-202751

OS Command Injection vulnerability in Ruijie RG-RAP2200E 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.3AI score0.02482EPSS
Exploits1References4
CVE
CVE
added 2025/12/11 12:0 a.m.10 views

CVE-2025-56130

The CVE-2025-56130 affects Ruijie RG-S1930 series switches (S1930SWITCH_3.0(1)B11P230). AOS vulnerability: OS Command Injection via a crafted POST to the module_update endpoint in /usr/local/lua/dev_config/ace_sw.lua. Impact is arbitrary command execution with high severity (CVSS 3.1: AV:N/AC:L/P...

8.8CVSS7.5AI score0.01809EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.13 views

CVE-2025-56083

CVE-2025-56083 affects Ruijie X30-PRO with version X30-PRO-V1_09241521. The vulnerability is an OS Command Injection in the Lua file path /usr/local/lua/dev_sta/nbr_networkId_merge.lua, where unvalidated input to the module_set parameter can allow an attacker to execute arbitrary commands via a c...

8.8CVSS7.5AI score0.01748EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.24 views

CVE-2025-56089

CVE-2025-56089 describes an OS Command Injection in Ruijie M18 EW firmware version 3.0(1)B11P226 M18 10223116. The flaw allows an attacker to execute arbitrary commands by sending a crafted POST request to the module_set handler in /usr/local/lua/dev_sta/nbr_cwmp.lua. Public sources (NVD/Red Hat/...

8.8CVSS7.5AI score0.02482EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.12 views

CVE-2025-56084

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO (B11P226_EW1800GX-PRO_10223117) allows remote attackers to execute arbitrary commands via a crafted POST to /usr/local/lua/dev_sta/nbr_cwmp.lua (module_set). Root cause is unverified input reaching a command execution surface. Affected ...

8.8CVSS7.5AI score0.0185EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.16 views

CVE-2025-56117

Summary: CVE-2025-56117 is an OS Command Injection in Ruijie X30-PRO (X30-PRO-V1_09241521). The flaw allows an attacker to execute arbitrary commands by sending a crafted POST request to the module_set handler in the file /usr/local/lua/dev_sta/nbr_cwmp.lua. What is affected: Ruijie X30-PRO devic...

8.8CVSS7.5AI score0.02666EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.26 views

CVE-2025-56120

The CVE-2025-56120 issue affects the Ruijie X60 PRO family (X60_10212014RG-X60 PRO) with firmware versions V1.00 and V2.00. The root cause is an OS Command Injection via a crafted POST request to the module_set in /usr/local/lua/dev_config/config_retain.lua, enabling arbitrary command execution w...

8.8CVSS7.5AI score0.02308EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.17 views

CVE-2025-56092

CVE-2025-56092 affects Ruijie X30 PRO V1 (X30-PRO-V1_09241521). The vulnerability is an OS Command Injection in the module_get function located at /usr/local/lua/dev_sta/networkConnect.lua, triggered by a crafted POST request. The CVE details indicate an attacker can execute arbitrary commands wi...

8.8CVSS7.4AI score0.02627EPSS
Exploits2References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.19 views

CVE-2025-56097

Summary: CVE-2025-56097 is an OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO (B11P226_EW1800GX-PRO_10223117). An attacker can inject and execute arbitrary commands by issuing a crafted POST request to the module_set function in the file /usr/local/lua/dev_config/config_retain.lua. A...

8.8CVSS7.5AI score0.02244EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.14 views

CVE-2025-56090

The CVE-2025-56090 issue affects Ruijie RG-EW1200G PRO devices (V1.00–V4.00). It is an OS command injection vulnerability where unvalidated input in the file /usr/local/lua/dev_config/config_retain.lua allows an attacker to execute arbitrary commands via a crafted POST to the module_set function....

8.8CVSS7.5AI score0.02627EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.19 views

CVE-2025-56085

CVE-2025-56085 affects Ruijie RG-EW1200 devices running EW 3.0(1)B11P227 EW1200 11130208RG-EW1200 V1.00. The flaw is an OS command injection in the module_set handler triggered by a crafted POST to /usr/local/lua/dev_config/config_retain.lua, stemming from unvalidated input. This can allow an att...

8.8CVSS7.5AI score0.02554EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/12/11 12:0 a.m.16 views

CVE-2025-56091

CVE-2025-56091 is an OS Command Injection affecting Ruijie RG-EW1800GX (B11P226_EW1800GX_10223121). An attacker can trigger arbitrary command execution via a crafted POST to /usr/local/lua/dev_config/config_retain.lua (module_set). The CVSS 3.1 base score is 8.8 (HIGH) with network attack vector,...

8.8CVSS7.5AI score0.02627EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder