| Titel | Ruijie switch RG-NBS2009G-P foreground CLI command injection |
|---|
| Beschreibung | There is an unauthorized access vulnerability in this interface, which can directly execute Ruijie
CLI commands, causing command injection attacks. For example, you can use the following
POC to execute the show log command to view all the log information of the switch. |
|---|
| Quelle | ⚠️ https://h0e4a0r1t.github.io/2024/vulns/Ruijie%20RG-NBS2009G-P%20switch%20has%20a%20foreground%20CLI%20command%20injection%20vulnerability.pdf |
|---|
| Benutzer | H0e4a0r1t (UID 65358) |
|---|
| Einreichung | 12.03.2024 02:25 (vor 2 Jahren) |
|---|
| Moderieren | 19.03.2024 14:35 (8 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 257281 [Ruijie RG-NBS2009G-P bis 20240305 /EXCU_SHELL Command1 erweiterte Rechte] |
|---|
| Punkte | 17 |
|---|