Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2019-16639
- EPSS 0.12%
- Veröffentlicht 16.07.2024 17:15:10
- Zuletzt bearbeitet 09.07.2025 17:00:22
An issue was found on the Ruijie EG-2000 series gateway. There is a newcli.php API interface without access control, which can allow an attacker (who only has web interface access) to use TELNET commands and/or show admin passwords via the mode_url=e...
7.5
CVE-2019-16640
- EPSS 0.04%
- Veröffentlicht 16.07.2024 17:15:10
- Zuletzt bearbeitet 09.07.2025 17:00:25
An issue was found in upload.php on the Ruijie EG-2000 series gateway. A parameter passed to the class UploadFile is mishandled (%00 and /var/./html are not checked), which can allow an attacker to upload any file to the gateway. This affects EG-2000...
1