Vulnerabilities > CVE-2024-47146 - Resource Leak vulnerability in Ruijienetworks Reyee OS

CVSS 6.5 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

low complexity

ruijienetworks

CWE-402

NVD

Published: 2024-12-06

Updated: 2024-12-10

Summary

Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow an attacker to obtain the devices serial number if physically adjacent and sniffing the RAW WIFI signal.

Vulnerable Configurations

Part	Description	Count
OS	Ruijienetworks Ruijienetworks Reyee OS *	1

Common Weakness Enumeration (CWE)

CWE-402 - Transmission of Private Resources into a New Sphere ('Resource Leak')

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-338-01