CNNVD-202601-4924 Information

CNNVD ID

CNNVD-202601-4924

Related CVE

CVE-2020-37015

• CNNVD Published: 2026-01-29

Description (Chinese)

Ruijie Switch eWeb S29_RGOS是中国锐捷（Ruijie）公司的一个Web管理界面系统。 Ruijie Switch eWeb S29_RGOS 11.4版本存在路径遍历漏洞，该漏洞源于/download.do端点存在目录遍历，可能导致访问敏感配置文件。

Description (English)

Ruijie Switch eWeb S29 RGOS is a Web management interface system for Ruijie in China. Ruijie Switch eWeb S29 RGOS 11.4 has a loophole, which stems from the existence of a directory at the /download.do endpoint, which may lead to access to sensitive profiles.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

锐捷

Published

2026-01-29

Last Modified

2026-02-24

References

https://faruktuygun.com/directorytraversal.html https://www.exploit-db.com/exploits/48755 https://www.ruijienetworks.com/ https://www.vulncheck.com/advisories/ruijie-networks-switch-eweb-srgos-directory-traversal