CNNVD-202512-2158 Information
CNNVD ID
CNNVD-202512-2158
Related CVE
- CNNVD Published: 2025-12-11
Description (Chinese)
Ruijie RG-BCR600W是中国锐捷(Ruijie)公司的一款商业云路由器。 Ruijie RG-BCR600W存在安全漏洞,该漏洞源于文件/usr/lib/lua/luci/controller/admin/common.lua中的check_changes函数未验证输入,可能导致OS命令注入攻击。
Description (English)
Ruijie RG-BCR600W is a commercial cloud router for Ruijie. Ruijie RG-BCR600W has a security loophole, which stems from the fact that the check changes function in document/usr/lib/lua/luci/controller/admin/common.lua does not verify the input, which may lead to an OS order being injected into the attack.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
锐捷
Published
2025-12-11
Last Modified
2026-02-24
References
https://1drv.ms/f/c/12406a392c92914b/Evvem8Mw6SlNh-ZJpY_9SAsBq2iDi88TFdFdA1Am3PdfCQ?e=YeLYxb https://1drv.ms/t/c/12406a392c92914b/EfCFw0RRV0hJvpV0rBLvTvABtWGVbrHzIPwPyku7phQ3Dg?e=GMqLpV https://github.com/flegoity/Ruijie-Multiple-Devices-Vulnerability-Reports-for-CVE/blob/main/CVE-2025-56082.md
Share on: