COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2021-43163

CVE-2021-43163

Severity
critical
Source
NVD · cve
Published
2022-05-04
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2021-43163
⚡ RCE shame 50/100 rce

A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the checkNet function in /cgi-bin/luci/api/auth.

Players implicated

ruijienetworks · vendorreyeeos · productrg-ew1200 · productrg-ew1200g pro · productrg-ew1800gx pro · productrg-ew300 pro · productrg-ew3200gx pro · product

Description

A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the checkNet function in /cgi-bin/luci/api/auth.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.