CNNVD-202512-2149 Information

Dec 11, 2025 cve

CNNVD ID

CNNVD-202512-2149

CVE-2025-56091

CNNVD Published: 2025-12-11

Description (Chinese)

Ruijie RG-EW1800GX是中国锐捷（Ruijie）公司的一款无线路由器。 Ruijie RG-EW1800GX B11P226_EW1800GX_10223121版本存在安全漏洞，该漏洞源于文件/usr/local/lua/dev_config/config_retain.lua中的module_set函数未验证输入，可能导致OS命令注入攻击。

Description (English)

Ruijie RG-EW1800GX is a wireless router of the Chinese company Ruijie. The Ruijie RG-EW1800GX B11P226 EW1800GX 10223121 version contains a security loophole that originates from the Module set function in document/usr/local/lua/dev config/config retain.lua, which does not verify the input and may result in an OS command being injected into the attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

锐捷

Published

2025-12-11

Last Modified

2026-02-24

References

https://1drv.ms/f/c/12406a392c92914b/EgUg1zJuaItDmLxZhkCg4B8BcJTRYnXyX4ePIIjNoZrRew?e=a23cK6 https://1drv.ms/t/c/12406a392c92914b/EdiWfxSbC0pAu_oksKjm2xgBXSCavYBBJt8V51JkcH4Dsw?e=OhOVCN https://github.com/flegoity/Ruijie-Multiple-Devices-Vulnerability-Reports-for-CVE/blob/main/CVE-2025-56091.md

Share on: