| 标题 | Ruijie switch RG-NBS2009G-P foreground CLI command injection |
|---|
| 描述 | There is an unauthorized access vulnerability in this interface, which can directly execute Ruijie
CLI commands, causing command injection attacks. For example, you can use the following
POC to execute the show log command to view all the log information of the switch. |
|---|
| 来源 | ⚠️ https://h0e4a0r1t.github.io/2024/vulns/Ruijie%20RG-NBS2009G-P%20switch%20has%20a%20foreground%20CLI%20command%20injection%20vulnerability.pdf |
|---|
| 用户 | H0e4a0r1t (UID 65358) |
|---|
| 提交 | 2024-03-12 02時25分 (2 年前) |
|---|
| 管理 | 2024-03-19 14時35分 (8 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 257281 [Ruijie RG-NBS2009G-P 直到 20240305 /EXCU_SHELL Command1 权限提升] |
|---|
| 积分 | 17 |
|---|