| Название | Ruijie Ruijie RG-UAC Unified Internet Behavior Management Audit System Ruijie RG-UAC Unified Internet Behavior Management Audit System Command Injection |
|---|
| Описание | There is a command execution vulnerability in the Ruijie RG - UAC application management gateway backend /view/networkConfig/ArpTable/arp_add_commit.php interface. An attacker can execute arbitrary commands to control server permissions. |
|---|
| Источник | ⚠️ https://github.com/h0e4a0r1t/-2x3J-1rPc-1-0-/blob/main/Ruijie%20RG-UAC%20Unified%20Internet%20Behavior%20Management%20Audit%20System%20Backend%20RCE%20Vulnerability-arp_add_commit.php.pdf |
|---|
| Пользователь | H0e4a0r1t (UID 65358) |
|---|
| Представление | 28.04.2024 04:30 (2 лет назад) |
|---|
| Модерация | 05.05.2024 09:00 (7 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 263114 [Ruijie RG-UAC до 20240428 arp_add_commit.php text_ip_addr/text_mac_addr эскалация привилегий] |
|---|
| Баллы | 17 |
|---|