Vulnerabilities > Ruijienetworks > Reyee OS > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-12-06 CVE-2024-52324 Unspecified vulnerability in Ruijienetworks Reyee OS
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x uses an inherently dangerous function which could allow an attacker to send a malicious MQTT message resulting in devices executing arbitrary OS commands.
network
low complexity
ruijienetworks
critical
 9.8
9.8
2024-12-06 CVE-2024-48874 Unspecified vulnerability in Ruijienetworks Reyee OS
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could give attackers the ability to force Ruijie's proxy servers to perform any request the attackers choose.
network
low complexity
ruijienetworks
critical
 9.8
9.8
2024-12-06 CVE-2024-46874 Unspecified vulnerability in Ruijienetworks Reyee OS
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow MQTT clients connecting with device credentials to send messages to some topics.
network
low complexity
ruijienetworks
critical
 9.9
9.9
2024-12-06 CVE-2024-47547 Unspecified vulnerability in Ruijienetworks Reyee OS
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a weak mechanism for its users to change their passwords which leaves authentication vulnerable to brute force attacks.
network
low complexity
ruijienetworks
critical
 9.8
9.8