CVE-2025-56752

EPSS 0.29%
Veröffentlicht 03.09.2025 00:00:00
Zuletzt bearbeitet 29.09.2025 18:36:43
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability in the Ruijie RG-ES series switch firmware ESW_1.0(1)B1P39 enables remote attackers to fully bypass authentication mechanisms, providing them with unrestricted access to alter administrative settings and potentially seize control of affected devices via crafted HTTP POST request to /user.cgi.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ruijie ≫ Rg-es228gs-p Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es228gs-p Version-

Ruijie ≫ Rg-es228gs-p Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es228gs-p Version-

Ruijie ≫ Rg-es228gs-p Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es228gs-p Version-

Ruijie ≫ Rg-es209gc-p Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es209gc-p Version-

Ruijie ≫ Rg-es209gc-p Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es209gc-p Version-

Ruijie ≫ Rg-es209gc-p Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es209gc-p Version-

Ruijie ≫ Rg-es205gc-p Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es205gc-p Version-

Ruijie ≫ Rg-es205gc-p Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es205gc-p Version-

Ruijie ≫ Rg-es205gc-p Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es205gc-p Version-

Ruijie ≫ Rg-es205gc Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es205gc Version-

Ruijie ≫ Rg-es205gc Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es205gc Version-

Ruijie ≫ Rg-es205gc Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es205gc Version-

Ruijie ≫ Rg-es208gc Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es208gc Version-

Ruijie ≫ Rg-es208gc Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es208gc Version-

Ruijie ≫ Rg-es208gc Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es208gc Version-

Ruijie ≫ Rg-es206gs-p Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es206gs-p Version-

Ruijie ≫ Rg-es206gs-p Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es206gs-p Version-

Ruijie ≫ Rg-es206gs-p Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es206gs-p Version-

Ruijie ≫ Rg-es210gs-p Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es210gs-p Version-

Ruijie ≫ Rg-es210gs-p Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es210gs-p Version-

Ruijie ≫ Rg-es210gs-p Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es210gs-p Version-

Ruijie ≫ Rg-es218gc-p Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es218gc-p Version-

Ruijie ≫ Rg-es218gc-p Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es218gc-p Version-

Ruijie ≫ Rg-es226gc-p Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es226gc-p Version-

Ruijie ≫ Rg-es226gc-p Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es226gc-p Version-

Ruijie ≫ Rg-es206gc-p Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es206gc-p Version-

Ruijie ≫ Rg-es206gc-p Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es206gc-p Version-

Ruijie ≫ Rg-es216gc Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es216gc Version-

Ruijie ≫ Rg-es224gc Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es224gc Version-

Ruijie ≫ Rg-es210gc-lp Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es210gc-lp Version-

Ruijie ≫ Rg-es206mg-p Firmware Versionesw_1.0(1)b1p42_release(12142711)

Ruijie ≫ Rg-es206mg-p Version-

Ruijie ≫ Rg-es209mg-p Firmware Versionesw_1.0(1)b1p42_release(12142711)

Ruijie ≫ Rg-es209mg-p Version-

Ruijie ≫ Rg-nis2100-8gt2sfp-hp Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-nis2100-8gt2sfp-hp Version-

Ruijie ≫ Rg-nis2100-4gt2sfp-hp Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-nis2100-4gt2sfp-hp Version-

Ruijie ≫ Rg-es216gc-v2 Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es216gc-v2 Version-

Ruijie ≫ Rg-es216gc-v2 Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es216gc-v2 Version-

Ruijie ≫ Rg-es216gc-v2 Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es216gc-v2 Version-

Ruijie ≫ Rg-es224gc-v2 Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es224gc-v2 Version-

Ruijie ≫ Rg-es224gc-v2 Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es224gc-v2 Version-

Ruijie ≫ Rg-es224gc-v2 Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es224gc-v2 Version-

Ruijie ≫ Rg-es220gs-p Firmware Versionesw_1.0(1)b1p27

Ruijie ≫ Rg-es220gs-p Version-

Ruijie ≫ Rg-es220gs-p Firmware Versionesw_1.0(1)b1p35

Ruijie ≫ Rg-es220gs-p Version-

Ruijie ≫ Rg-es220gs-p Firmware Versionesw_1.0(1)b1p39

Ruijie ≫ Rg-es220gs-p Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.29%	0.522

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.4	3.9	5.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

https://github.com/TNCX-byte/Vulnerability_Research/blob/main/CVE-2025-56752/README.md

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-56752

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-56752

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-56752

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-56752