| Titolo | Ruijie Ruijie RG-UAC Unified Internet Behavior Management Audit System Ruijie RG-UAC Unified Internet Behavior Management Audit System Command Injection |
|---|
| Descrizione | There is a command execution vulnerability in the Ruijie RG - UAC application management gateway backend /view/networkConfig/RouteConfig/StaticRoute/static_route_edit_ipv6.php?action=modify interface. An attacker can execute arbitrary commands to control server permissions. |
|---|
| Fonte | ⚠️ https://github.com/h0e4a0r1t/h0e4a0r1t.github.io/blob/master/2024/z%7CYVDv%7CHKA)*%5CdK!/Ruijie%20RG-UAC%20Unified%20Internet%20Behavior%20Management%20Audit%20System%20Backend%20RCE%20Vulnerability-StaticRoute%3Astatic_route_edit_ipv6.php.pdf |
|---|
| Utente | H0e4a0r1t (UID 65358) |
|---|
| Sottomissione | 16/05/2024 10:37 (2 anni fa) |
|---|
| Moderazione | 24/05/2024 20:44 (8 days later) |
|---|
| Stato | Duplicato |
|---|
| Voce VulDB | 263112 [Ruijie RG-UAC fino a 20240428 static_route_edit_ipv6.php oldipmask/oldgateway/olddevname escalationi di privilegi] |
|---|
| Punti | 0 |
|---|