Published: 06/12/2023 Updated: 11/12/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

Ruijie EG Series Routers version EG_3.0(1)B11P216 and before allows unauthenticated malicious users to remotely execute arbitrary code due to incorrect filtering.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ruijie rg-eg1000c_firmware 3.0\$1\$b11p216
ruijie rg-eg1000e_firmware 3.0\$1\$b11p216
ruijie rg-eg105g_firmware 3.0\$1\$b11p216
ruijie rg-eg105g_v2_firmware 3.0\$1\$b11p216
ruijie rg-eg105g-e_firmware 3.0\$1\$b11p216
ruijie rg-eg105g-p_firmware 3.0\$1\$b11p216
ruijie rg-eg105g-pe_firmware 3.0\$1\$b11p216
ruijie rg-eg105gw\$t\$_firmware 3.0\$1\$b11p216
ruijie rg-eg105gw-x_firmware 3.0\$1\$b11p216
ruijie rg-eg2000ce_firmware 3.0\$1\$b11p216
ruijie rg-eg209gs_firmware 3.0\$1\$b11p216
ruijie rg-eg2100-p_firmware 3.0\$1\$b11p216
ruijie rg-eg210g-e_firmware 3.0\$1\$b11p216
ruijie rg-eg210g-p_firmware 3.0\$1\$b11p216
ruijie rg-eg210g-pe_firmware 3.0\$1\$b11p216
ruijie rg-eg3000eu_firmware 3.0\$1\$b11p216
ruijie rg-eg3000xe_firmware 3.0\$1\$b11p216
ruijie rg-eg305gh-p-e_firmware 3.0\$1\$b11p216
ruijie rg-eg310gh-e_firmware 3.0\$1\$b11p216
ruijie rg-eg3230_firmware 3.0\$1\$b11p216
ruijie rg-eg3250_firmware 3.0\$1\$b11p216

CVE-2023-48849 Ruijie EG Series Routers firmware <=EG_30(1)B11P216 allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering $ python3 pocpy 19216811 'id' uid=0(root) gid=0(root) $ python3 pocpy 19216811 'grep TARGET /etc/openwrt_release' DISTRIB_TARGET='mediatek/eg310gh-e'

NVD-CWE-Other https://github.com/delsploit/CVE-2023-48849 https://nvd.nist.gov https://github.com/delsploit/CVE-2023-48849

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Vulnerable Product	Search on Vulmon	Subscribe to Product
ruijie rg-eg1000c_firmware 3.0\\(1\\)b11p216
ruijie rg-eg1000e_firmware 3.0\\(1\\)b11p216
ruijie rg-eg105g_firmware 3.0\\(1\\)b11p216
ruijie rg-eg105g_v2_firmware 3.0\\(1\\)b11p216
ruijie rg-eg105g-e_firmware 3.0\\(1\\)b11p216
ruijie rg-eg105g-p_firmware 3.0\\(1\\)b11p216
ruijie rg-eg105g-pe_firmware 3.0\\(1\\)b11p216
ruijie rg-eg105gw\\(t\\)_firmware 3.0\\(1\\)b11p216
ruijie rg-eg105gw-x_firmware 3.0\\(1\\)b11p216
ruijie rg-eg2000ce_firmware 3.0\\(1\\)b11p216
ruijie rg-eg209gs_firmware 3.0\\(1\\)b11p216
ruijie rg-eg2100-p_firmware 3.0\\(1\\)b11p216
ruijie rg-eg210g-e_firmware 3.0\\(1\\)b11p216
ruijie rg-eg210g-p_firmware 3.0\\(1\\)b11p216
ruijie rg-eg210g-pe_firmware 3.0\\(1\\)b11p216
ruijie rg-eg3000eu_firmware 3.0\\(1\\)b11p216
ruijie rg-eg3000xe_firmware 3.0\\(1\\)b11p216
ruijie rg-eg305gh-p-e_firmware 3.0\\(1\\)b11p216
ruijie rg-eg310gh-e_firmware 3.0\\(1\\)b11p216
ruijie rg-eg3230_firmware 3.0\\(1\\)b11p216
ruijie rg-eg3250_firmware 3.0\\(1\\)b11p216

CVE-2023-48849

Vulnerability Summary

Github Repositories

References

Vulmon Search

About

Products

Connect