How severe is CVE-2024-4815?

CVE-2024-4815 has a CVSS v3 score of 6.3 (MEDIUM).

CVE-2024-4815

6.3MEDIUM

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240506. Affected by this issue is some unknown functionality of the file /view/bugSolve/viewData/detail.php.

发布于: 5/14/2024更新于: 8/21/2025

描述

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240506. Affected by this issue is some unknown functionality of the file /view/bugSolve/viewData/detail.php. The manipulation of the argument filename leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-263936. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

AI分析AI驱动

受影响产品

ruijierg-uac_6000-cc_firmware

ruijierg-uac_6000-cc

ruijierg-uac_6000-e10_firmware

ruijierg-uac_6000-e10

ruijierg-uac_6000-e10_firmware

ruijierg-uac_6000-e10

3.0

ruijierg-uac_6000-e10c_firmware

ruijierg-uac_6000-e10c

ruijierg-uac_6000-e20_firmware

ruijierg-uac_6000-e20

ruijierg-uac_6000-e20c_firmware

ruijierg-uac_6000-e20c

ruijierg-uac_6000-e20m_firmware

ruijierg-uac_6000-e20m

ruijierg-uac_6000-e50_firmware

ruijierg-uac_6000-e50

ruijierg-uac_6000-e50c_firmware

ruijierg-uac_6000-e50c

ruijierg-uac_6000-e50m_firmware

ruijierg-uac_6000-e50m

ruijierg-uac_6000-ea_firmware

ruijierg-uac_6000-ea

ruijierg-uac_6000-ei_firmware

ruijierg-uac_6000-ei

ruijierg-uac_6000-isg02_firmware

ruijierg-uac_6000-isg02

ruijierg-uac_6000-isg10_firmware

ruijierg-uac_6000-isg10

ruijierg-uac_6000-isg200_firmware

ruijierg-uac_6000-isg200

ruijierg-uac_6000-isg40_firmware

ruijierg-uac_6000-isg40

ruijierg-uac_6000-si_firmware

ruijierg-uac_6000-si

ruijierg-uac_6000-u3100_firmware

ruijierg-uac_6000-u3100

ruijierg-uac_6000-u3210_firmware

ruijierg-uac_6000-u3210

ruijierg-uac_6000-x100_firmware

ruijierg-uac_6000-x100

ruijierg-uac_6000-x100s_firmware

ruijierg-uac_6000-x100s

ruijierg-uac_6000-x20_firmware

ruijierg-uac_6000-x20

ruijierg-uac_6000-x200_firmware

ruijierg-uac_6000-x200

ruijierg-uac_6000-x20m_firmware

ruijierg-uac_6000-x20m

ruijierg-uac_6000-x20me_firmware

ruijierg-uac_6000-x20me

ruijierg-uac_6000-x300d_firmware

ruijierg-uac_6000-x300d

ruijierg-uac_6000-x60_firmware

ruijierg-uac_6000-x60

ruijierg-uac_6000-xs_firmware

ruijierg-uac_6000-xs

参考资料

https://github.com/h0e4a0r1t/I_L-HxK-pF-uZ1-/blob/main/Ruijie%20RG-UAC%20Unified%20Internet%20Behavior%20Management%20Audit%20System%20Backend%20RCE%20Vulnerability-view_bugSolve_viewData_detail.php.pdf
Broken Link
https://vuldb.com/?ctiid.263936
Permissions RequiredVDB Entry
https://vuldb.com/?id.263936
Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.329966
Third Party AdvisoryVDB Entry
https://github.com/h0e4a0r1t/I_L-HxK-pF-uZ1-/blob/main/Ruijie%20RG-UAC%20Unified%20Internet%20Behavior%20Management%20Audit%20System%20Backend%20RCE%20Vulnerability-view_bugSolve_viewData_detail.php.pdf
Broken Link
https://vuldb.com/?ctiid.263936
Permissions RequiredVDB Entry
https://vuldb.com/?id.263936
Third Party AdvisoryVDB Entry
https://vuldb.com/?submit.329966
Third Party AdvisoryVDB Entry