Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9476 matches found

NVD
NVDadded 2025/12/11 6:16 p.m.5 views

CVE-2025-56083

OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V109241521 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrnetworkIdmerge.lua...

8.8CVSS0.00259EPSS
Exploits0References3
NVD
NVDadded 2025/12/11 6:16 p.m.2 views

CVE-2025-56084

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226EW1800GX-PRO10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

8.8CVSS0.00084EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2025/12/11 12:46 a.m.2 views

SUSE CVE-2025-14104

A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 256-byte usernames, specifically within the setpwnam function, affecting SUID Set User ID login-utils utilities writing to the password database...

6.1CVSS6.9AI score0.00009EPSS
Exploits0References16
EUVD
EUVDadded 2025/12/11 12:0 a.m.3 views

EUVD-2025-202742

OS Command Injection vulnerability in Ruijie M18 EW3.01B11P226M1810223116 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.3AI score0.00675EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/12/11 12:0 a.m.2 views

CVE-2025-56077

OS Command Injection vulnerability in Ruijie RG-RAP2200E 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.5AI score0.00675EPSS
Exploits1References3
EUVD
EUVDadded 2025/12/11 12:0 a.m.3 views

EUVD-2025-202751

OS Command Injection vulnerability in Ruijie RG-RAP2200E 247 2200 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.3AI score0.00675EPSS
Exploits1References4
CNNVD
CNNVDadded 2025/12/11 12:0 a.m.5 views

Ruijie RG-EW1800GX 安全漏洞

Ruijie RG-EW1800GX is a wireless router from Ruijie China. A security vulnerability exists in the Ruijie RG-EW1800GX that originates from unverified input to the moduleset function in the file /usr/local/lua/devsta/nbrcwmp.lua, which could lead to an OS command injection attack...

8.8CVSS7.2AI score0.00084EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/12/11 12:0 a.m.3 views

Ruijie X60 PRO 安全漏洞

Ruijie X60 PRO is a home wireless router from China Ruijie Ruijie. A security vulnerability exists in Ruijie X60 PRO X6010212014RG-X60 PRO version V1.00V2.00, which originates from improper handling of a specially crafted POST request for moduleset in the file...

8.8CVSS7AI score0.00675EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2025/12/11 12:0 a.m.3 views

CVE-2025-56120

OS Command Injection vulnerability in Ruijie X60 PRO X6010212014RG-X60 PRO V1.00/V2.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

7.5AI score0.00675EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/12/11 12:0 a.m.23 views

CVE-2025-56090

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

0.00183EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/12/11 12:0 a.m.20 views

CVE-2025-56097

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226EW1800GX-PRO10223117 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

0.00675EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/12/11 12:0 a.m.27 views

CVE-2025-56085

OS Command Injection vulnerability in Ruijie RG-EW1200 EW3.01B11P227EW120011130208RG-EW1200 V1.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

0.00675EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2025/12/11 12:0 a.m.3 views

CVE-2025-56095

OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.5AI score0.00183EPSS
Exploits1References3
Vulnrichment
Vulnrichmentadded 2025/12/11 12:0 a.m.4 views

CVE-2025-56106

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226EW1800GX10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

7.5AI score0.00183EPSS
Exploits1References3
EUVD
EUVDadded 2025/12/11 12:0 a.m.4 views

EUVD-2025-202740

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226EW1800GX10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devconfig/configretain.lua...

7.3AI score0.00183EPSS
Exploits1References4
CNNVD
CNNVDadded 2025/12/11 12:0 a.m.4 views

Ruijie M18 安全漏洞

Ruijie M18 is a WiFi router from China Ruijie Ruijie. A security vulnerability exists in the Ruijie M18 EW3.01B11P226M1810223116 version, which originates from improper handling of a specially crafted POST request for moduleset in the file /usr/local/lua/devconfig/configretain.lua, which could le...

8.8CVSS6.9AI score0.00915EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/12/11 12:0 a.m.29 views

CVE-2025-56089

OS Command Injection vulnerability in Ruijie M18 EW3.01B11P226M1810223116 allowing attackers to execute arbitrary commands via a crafted POST request to the moduleset in file /usr/local/lua/devsta/nbrcwmp.lua...

0.00675EPSS
Exploits1References3
CVE
CVEadded 2025/12/11 12:0 a.m.9 views

CVE-2025-56084

OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO (B11P226_EW1800GX-PRO_10223117) allows remote attackers to execute arbitrary commands via a crafted POST to /usr/local/lua/dev_sta/nbr_cwmp.lua (module_set). Root cause is unverified input reaching a command execution surface. Affected ...

8.8CVSS7.5AI score0.00084EPSS
Exploits0References3Affected Software1
CVE
CVEadded 2025/12/11 12:0 a.m.11 views

CVE-2025-56111

Affected software: Ruijie RG-BCR RG-BCR860. Issue: OS Command Injection in the netport.lua handler when processing crafted POST to network_set_wan_conf. Impact: attackers can execute arbitrary commands with high severity (CVSS 3.1: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). Affected file: /usr/lib/lua...

8.8CVSS7.5AI score0.0171EPSS
Exploits1References3Affected Software1
CVE
CVEadded 2025/12/11 12:0 a.m.10 views

CVE-2025-56083

CVE-2025-56083 affects Ruijie X30-PRO with version X30-PRO-V1_09241521. The vulnerability is an OS Command Injection in the Lua file path /usr/local/lua/dev_sta/nbr_networkId_merge.lua, where unvalidated input to the module_set parameter can allow an attacker to execute arbitrary commands via a c...

8.8CVSS7.5AI score0.00259EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder