|
|
|||
| Rule General Information |
|---|
| Release Date: | 2025-02-25 | |
| Rule Name: | Ruijie API auth Remote Command Execution Vulnerability | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Ruijie Ruiyi is a sub-brand of Ruijie network for the business market. With convenient network, switch, router, wireless, security, cloud services six product lines, the solution covers commercial retail. auth has remote command execution vulnerability, attackers can arbitrarily execute server-side code, write backdoors, obtain server permissions, and then control the entire web server. | |
| Impact: | An attacker can execute arbitrary command via a successful exploit in the context of the vulnerable software. | |
| Affected OS: | Windows, Linux, Others | |
| Reference: | ||
| Solutions |
|---|
| Please contact the software vendor to update the software patch. |