| Title | Ruijie Ruijie RG-UAC Unified Internet Behavior Management Audit System Ruijie RG-UAC Unified Internet Behavior Management Audit System Command Injection |
|---|
| Description | There is a command execution vulnerability in the Ruijie RG - UAC application management gateway backend /view/IPV6/ipv6StaticRoute/static_route_add_ipv6.php interface. An attacker can execute arbitrary commands to control server permissions.
|
|---|
| Source | ⚠️ https://github.com/h0e4a0r1t/-2x3J-1rPc-1-0-/blob/main/Ruijie%20RG-UAC%20Unified%20Internet%20Behavior%20Management%20Audit%20System%20Backend%20RCE%20Vulnerability-static_route_add_ipv6.php.pdf |
|---|
| User | H0e4a0r1t (UID 65358) |
|---|
| Submission | 04/28/2024 04:26 AM (1 Year ago) |
|---|
| Moderation | 05/05/2024 09:00 AM (7 days later) |
|---|
| Status | Accepted |
|---|
| VulDB Entry | 263111 [Ruijie RG-UAC up to 20240428 static_route_add_ipv6.php text_prefixlen/text_gateway/devname os command injection] |
|---|
| Points | 17 |
|---|