CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-46874

Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow MQTT clients connecting with device credentials to send messages to some topics. Attackers with device credentials could issue commands to other devices on behalf of Ruijie's cloud.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 21.1%

CVSS Severity

CVSS v3 Score 8.1

References

https://www.cisa.gov/news-events/ics-advisories/icsa-24-338-01

Products affected by CVE-2024-46874

Ruijienetworks » Reyee Os » Version: 2.206.0

cpe:2.3:o:ruijienetworks:reyee_os:2.206.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-46874

Products

Pricing

Contact Us