Vulnerabilities > Ruijienetworks > High

DATE CVE VULNERABILITY TITLE RISK
2024-12-06 CVE-2024-45722 Unspecified vulnerability in Ruijienetworks Reyee OS
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x uses weak credential mechanism that could allow an attacker to easily calculate MQTT credentials.
network
low complexity
ruijienetworks
7.5
7.5
2024-12-06 CVE-2024-42494 Privacy Violation vulnerability in Ruijienetworks Reyee OS
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a a feature that could enable sub accounts or attackers to view and exfiltrate sensitive information from all cloud accounts registered to Ruijie's services
network
low complexity
ruijienetworks CWE-359
7.5
7.5
2024-12-06 CVE-2024-51727 Premature Release of Resource During Expected Lifetime vulnerability in Ruijienetworks Reyee OS
Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a feature that could enable attackers to invalidate a legitimate user's session and cause a denial-of-service attack on a user's account.
network
low complexity
ruijienetworks CWE-826
7.5
7.5
2023-08-18 CVE-2023-4415 Unspecified vulnerability in Ruijienetworks Rg-Ew1200G Firmware 07161417R483
A vulnerability was found in Ruijie RG-EW1200G 07161417 r483.
network
low complexity
ruijienetworks
8.8
8.8
2023-07-10 CVE-2023-3608 Unspecified vulnerability in Ruijienetworks Bcr810W Firmware 2.5.10
A vulnerability was found in Ruijie BCR810W 2.5.10.
network
low complexity
ruijienetworks
8.8
8.8
2023-03-26 CVE-2023-27796 Command Injection vulnerability in Ruijienetworks products
RG-EW1200G PRO Wireless Routers EW_3.0(1)B11P204, RG-EW1800GX PRO Wireless Routers EW_3.0(1)B11P204, and RG-EW3200GX PRO Wireless Routers EW_3.0(1)B11P204 were discovered to contain multiple command injection vulnerabilities via the data.ip, data.protocal, data.iface and data.package parameters in the runPackDiagnose function of diagnose.lua.
network
low complexity
ruijienetworks CWE-77
8.8
8.8
2022-05-04 CVE-2021-43159 Command Injection vulnerability in Ruijienetworks Reyeeos
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the setSessionTime function in /cgi-bin/luci/api/common..
network
low complexity
ruijienetworks CWE-77
8.8
8.8
2022-05-04 CVE-2021-43160 Command Injection vulnerability in Ruijienetworks Reyeeos
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the switchFastDhcp function in /cgi-bin/luci/api/diagnose.
network
low complexity
ruijienetworks CWE-77
8.8
8.8
2022-05-04 CVE-2021-43161 Command Injection vulnerability in Ruijienetworks Reyeeos
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the doSwitchApi function in /cgi-bin/luci/api/switch.
network
low complexity
ruijienetworks CWE-77
8.8
8.8
2022-05-04 CVE-2021-43162 Command Injection vulnerability in Ruijienetworks Reyeeos
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the runPackDiagnose function in /cgi-bin/luci/api/diagnose.
network
low complexity
ruijienetworks CWE-77
8.8
8.8