← Back

CVE-2024-4815

nvd nist
Published: May 14, 2024Modified: Aug 21, 2025

JSON object

Loading...
5.3
Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Show more
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less
Source: CNA (Secondary)

Description

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240506. Affected by this issue is some unknown functionality of the file /view/bugSolve/viewData/detail.php. The manipulation of the argument filename leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263936. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Affected (27)

Ruijie
27 products
Rg Uac 6000 Cc Firmware
Rg Uac 6000 E10 Firmware
Rg Uac 6000 E10c Firmware
Rg Uac 6000 E20 Firmware
Rg Uac 6000 E20c Firmware
Rg Uac 6000 E20m Firmware
Rg Uac 6000 E50 Firmware
Rg Uac 6000 E50c Firmware
Rg Uac 6000 E50m Firmware
Rg Uac 6000 Ea Firmware
Rg Uac 6000 Ei Firmware
Rg Uac 6000 Isg02 Firmware
Rg Uac 6000 Isg10 Firmware
Rg Uac 6000 Isg200 Firmware
Rg Uac 6000 Isg40 Firmware
Rg Uac 6000 Si Firmware
Rg Uac 6000 U3100 Firmware
Rg Uac 6000 U3210 Firmware
Rg Uac 6000 X100 Firmware
Rg Uac 6000 X100s Firmware
Rg Uac 6000 X20 Firmware
Rg Uac 6000 X200 Firmware
Rg Uac 6000 X20m Firmware
Rg Uac 6000 X20me Firmware
Rg Uac 6000 X300d Firmware
Rg Uac 6000 X60 Firmware
Rg Uac 6000 Xs Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 Cc Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 Cc
All versions
Configuration B
1 platform
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 E10
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 E10 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 E10
Version 3.0
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 E10c Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 E10c
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 E20 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 E20
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 E20c Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 E20c
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 E20m Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 E20m
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 E50 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 E50
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 E50c Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 E50c
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 E50m Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 E50m
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 Ea Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 Ea
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 Ei Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 Ei
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 Isg02 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 Isg02
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 Isg10 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 Isg10
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 Isg200 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 Isg200
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 Isg40 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 Isg40
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 Si Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 Si
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 U3100 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 U3100
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 U3210 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 U3210
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 X100 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 X100
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 X100s Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 X100s
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 X20 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 X20
All versions
Configuration W
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 X200 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 X200
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 X20m Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 X20m
All versions
Configuration Y
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 X20me Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 X20me
All versions
Configuration Z
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 X300d Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 X300d
All versions
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 X60 Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 X60
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Rg Uac 6000 Xs Firmware
All versions
Running on/withPlatform Versions
Ruijie
Rg Uac 6000 Xs
All versions

Related CWEs

CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (8)

Source: cna@vuldb.com
Broken Link
Source: cna@vuldb.com
Permissions RequiredVDB Entry
Source: cna@vuldb.com
Third Party AdvisoryVDB Entry
Source: cna@vuldb.com
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Permissions RequiredVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.