CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

RedhatCVE•added 2025/12/12 1:6 a.m.•3 views

CVE-2025-56089

OS Command Injection vulnerability in Ruijie M18 EW3.01B11P226M1810223116 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS7.9AI score0.00675EPSS

Exploits1References1

RedhatCVE•added 2025/12/12 1:6 a.m.•4 views

CVE-2025-56084

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226EW1800GX-PRO10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS7.9AI score0.00084EPSS

Exploits0References1

OSV•added 2025/12/11 7:15 p.m.•2 views

CVE-2025-56117

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS6.1AI score0.0171EPSS

Exploits1References3

OSV•added 2025/12/11 7:15 p.m.•2 views

CVE-2025-56118

OS Command Injection vulnerability in Ruijie X60 PRO X6010212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS6.1AI score0.00675EPSS

Exploits1References3

NVD•added 2025/12/11 7:15 p.m.•3 views

CVE-2025-56117

8.8CVSS0.0171EPSS

Exploits1References3

OSV•added 2025/12/11 7:15 p.m.•2 views

CVE-2025-56106

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226EW1800GX10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS6.1AI score0.00183EPSS

Exploits1References3

NVD•added 2025/12/11 6:16 p.m.•2 views

CVE-2025-56077

OS Command Injection vulnerability in Ruijie RG-RAP2200E 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS0.00675EPSS

Exploits1References3

NVD•added 2025/12/11 6:16 p.m.•1 views

CVE-2025-56084

8.8CVSS0.00084EPSS

Exploits0References3

CVE•added 2025/12/11 12:0 a.m.•9 views

CVE-2025-56084

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO (B11P226_EW1800GX-PRO_10223117) allows remote attackers to execute arbitrary commands via a crafted POST to /usr/local/lua/dev_sta/nbr_cwmp.lua (module_set). Root cause is unverified input reaching a command execution surface. Affected ...

8.8CVSS7.5AI score0.00084EPSS

Exploits0References3Affected Software1

CVE•added 2025/12/11 12:0 a.m.•13 views

CVE-2025-56117

Summary: CVE-2025-56117 is an OS Command Injection in Ruijie X30-PRO (X30-PRO-V1_09241521). The flaw allows an attacker to execute arbitrary commands by sending a crafted POST request to the module_set handler in the file /usr/local/lua/dev_sta/nbr_cwmp.lua. What is affected: Ruijie X30-PRO devic...

8.8CVSS7.5AI score0.0171EPSS

Exploits1References3Affected Software1

CVE•added 2025/12/11 12:0 a.m.•20 views

CVE-2025-56089

CVE-2025-56089 describes an OS Command Injection in Ruijie M18 EW firmware version 3.0(1)B11P226 M18 10223116. The flaw allows an attacker to execute arbitrary commands by sending a crafted POST request to the module_set handler in /usr/local/lua/dev_sta/nbr_cwmp.lua. Public sources (NVD/Red Hat/...

8.8CVSS7.5AI score0.00675EPSS

Exploits1References3Affected Software1

Vulnrichment•added 2025/12/11 12:0 a.m.•2 views

CVE-2025-56084

7.5AI score0.00084EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by