| Название | Ruijie switch RG-NBS2009G-P foreground CLI command injection |
|---|
| Описание | There is an unauthorized access vulnerability in this interface, which can directly execute Ruijie
CLI commands, causing command injection attacks. For example, you can use the following
POC to execute the show log command to view all the log information of the switch. |
|---|
| Источник | ⚠️ https://h0e4a0r1t.github.io/2024/vulns/Ruijie%20RG-NBS2009G-P%20switch%20has%20a%20foreground%20CLI%20command%20injection%20vulnerability.pdf |
|---|
| Пользователь | H0e4a0r1t (UID 65358) |
|---|
| Представление | 12.03.2024 02:25 (2 лет назад) |
|---|
| Модерация | 19.03.2024 14:35 (8 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 257281 [Ruijie RG-NBS2009G-P до 20240305 /EXCU_SHELL Command1 эскалация привилегий] |
|---|
| Баллы | 17 |
|---|