CNNVD-202509-4242 Information

CNNVD ID

CNNVD-202509-4242

Related CVE

CVE-2025-11073

• CNNVD Published: 2025-09-27

Description (Chinese)

Ruijie RG-EW5100BE是中国锐捷（Ruijie）公司的一款无线路由器。 Ruijie RG-EW5100BE EW_3.0B11P280_EW5100BE-PRO_12183019版本存在命令注入漏洞，该漏洞源于对文件/cgi-bin/luci/api/cmd中参数url的错误操作，可能导致远程命令注入攻击。

Description (English)

Ruijie RG-EW5100BE is a wireless router of the Chinese company Ruijie. Ruijie RG-EW5100BE EW 3.0B11P280 EW5100BE-PRO 12183019 has a command-injecting loophole that stems from an error in the url of the parameter in the document/cgi-bin/luci/api/cmd, which may result in a remote command-injecting attack.

Hazard Level

High

Vulnerability Type

命令注入

Affected Vendor

锐捷

Published

2025-09-27

Last Modified

2026-02-24

References

https://vuldb.com/?id.326113 https://vuldb.com/?submit.659933 https://vuldb.com/?ctiid.326113 https://github.com/s1nec-1o/cve/blob/main/cve-report.md#poc https://access.redhat.com/security/cve/cve-2025-11073