CVE-2025-56088
- EPSS 0.28%
- Veröffentlicht 11.12.2025 18:16:20
- Zuletzt bearbeitet 26.01.2026 20:55:35
OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_service in file /usr/lib/lua/luci/controller/admin/service.lua.
CVE-2025-56109
- EPSS 1.09%
- Veröffentlicht 11.12.2025 00:00:00
- Zuletzt bearbeitet 26.01.2026 20:43:45
OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_wireless in file /usr/lib/lua/luci/control/admin/wireless.lua.
CVE-2025-56110
- EPSS 1.09%
- Veröffentlicht 11.12.2025 00:00:00
- Zuletzt bearbeitet 26.01.2026 19:13:04
OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_deal_update in file /usr/lib/lua/luci/controller/api/rcmsAPI.lua.
CVE-2025-56111
- EPSS 1.44%
- Veröffentlicht 11.12.2025 00:00:00
- Zuletzt bearbeitet 07.01.2026 20:27:40
OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the network_set_wan_conf in file /usr/lib/lua/luci/controller/admin/netport.lua.
CVE-2025-56129
- EPSS 1.21%
- Veröffentlicht 11.12.2025 00:00:00
- Zuletzt bearbeitet 15.12.2025 20:00:27
OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitrary commands via a crafted POST request to the action_diagnosis in file /usr/lib/lua/luci/controller/admin/diagnosis.lua.