Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2023-12-20	CVE-2023-50993	OS Command Injection vulnerability in Ruijie Rg-Ws6008 Firmware and Rg-Ws6108 Firmware Ruijie WS6008 v1.x v2.x AC_RGOS11.9(6)W3B2_G2C6-01_10221911 and WS6108 v1.x AC_RGOS11.9(6)W3B2_G2C6-01_10221911 was discovered to contain a command injection vulnerability via the function downFiles. network low complexity ruijie CWE-78 critical	9.8
2023-12-06	CVE-2023-48849	Unspecified vulnerability in Ruijie products Ruijie EG Series Routers version EG_3.0(1)B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering. network low complexity ruijie critical	9.8
2023-07-31	CVE-2023-34644	Code Injection vulnerability in Ruijie products Remote code execution vulnerability in Ruijie Networks Product: RG-EW series home routers and repeaters EW_3.0(1)B11P204, RG-NBS and RG-S1930 series switches SWITCH_3.0(1)B11P218, RG-EG series business VPN routers EG_3.0(1)B11P216, EAP and RAP series wireless access points AP_3.0(1)B11P218, NBC series wireless controllers AC_3.0(1)B11P86 allows unauthorized remote attackers to gain the highest privileges via crafted POST request to /cgi-bin/luci/api/auth. network low complexity ruijie CWE-94 critical	9.8
2023-06-18	CVE-2023-3306	Improper Access Control vulnerability in Ruijie Rg-Ew1200G Firmware Ew3.0(1)B11P204 A vulnerability was found in Ruijie RG-EW1200G EW_3.0(1)B11P204. network low complexity ruijie CWE-284 critical	9.8