← Back

CVE-2024-24116

nvd nistnuclei
Published: Oct 2, 2024Modified: Feb 10, 2025

JSON object

Loading...
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

An issue in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release(9736) allows a remote attacker to gain privileges via the system/config_menu.htm.

Affected (1)

Ruijie
1 product
Rg Nbs2009g P Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Nbs2009g P Firmware
Version 10.4(1)p2_release(9736)
Running on/withPlatform Versions
Ruijie
Rg Nbs2009g P
All versions

Related CWEs

CWE-280
Improper Handling of Insufficient Permissions or Privileges
The product does not handle or incorrectly handles when it has insufficient privileges to access resources or functionality as specified by their permissions. This may cause it to follow unexpected code paths that may leave the product in an invalid state.

References (2)

Source: cve@mitre.org
Third Party Advisory
Source: cve@mitre.org
ExploitThird Party Advisory

Timeline

No history available yet.