Vulnerability Details CVE-2021-43164
A Remote Code Execution (RCE) vulnerability exists in Ruijie Networks Ruijie RG-EW Series Routers up to ReyeeOS 1.55.1915 / EW_3.0(1)B11P55 via the updateVersion function in /cgi-bin/luci/api/wireless.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.263
EPSS Ranking 96.1%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
- http://packetstormsecurity.com/files/167099/Ruijie-Reyee-Mesh-Router-Remote-Code-Execution.html
- http://ruijie.com
- https://seclists.org/fulldisclosure/2022/May/0
- http://packetstormsecurity.com/files/167099/Ruijie-Reyee-Mesh-Router-Remote-Code-Execution.html
- http://ruijie.com
- https://seclists.org/fulldisclosure/2022/May/0
Products affected by CVE-2021-43164
-
cpe:2.3:h:ruijienetworks:rg-ew1200:-
-
cpe:2.3:h:ruijienetworks:rg-ew1200g_pro:-
-
cpe:2.3:h:ruijienetworks:rg-ew1800gx_pro:-
-
cpe:2.3:h:ruijienetworks:rg-ew300_pro:-
-
cpe:2.3:h:ruijienetworks:rg-ew3200gx_pro:-
-
cpe:2.3:o:ruijienetworks:reyeeos:*