CVE-2019-16640 in EG-2000informazioni

Riassunto

di MITRE • 16/07/2024

An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the class UploadFile is mishandled (%00 and /var/./html are not checked), which can allow an attacker to upload any file to the gateway. This affects EG-2000SE EG_RGOS 11.9 B11P1.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsabile

MITRE

Prenotare

20/09/2019

Divulgazione

16/07/2024

Moderazione

accettato

Voce

VDB-271667

CPE

pronto

CWE

CWE-434 (confermato)

CVSS

6.3 (VulDB)

EPSS

0.00442

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-16640
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-16640
CVE Details	https://www.cvedetails.com/cve/CVE-2019-16640/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you need the next level of professionalism?

Upgrade your account now!