CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-56106

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.3%

CVSS Severity

CVSS v3 Score 8.8

References

https://1drv.ms/f/c/12406a392c92914b/EgUg1zJuaItDmLxZhkCg4B8BcJTRYnXyX4ePIIjNoZrRew?e=a23cK6
https://1drv.ms/t/c/12406a392c92914b/EcUP8SMciOVBgNEy31-OnnkBQRk_fUCDWUtdDX8UBfbXEA?e=FuQDPi
https://github.com/flegoity/Ruijie-Multiple-Devices-Vulnerability-Reports-for-CVE/blob/main/CVE-2025-56106.md

Products affected by CVE-2025-56106

Ruijie » Rg-Est350 » Version: N/A

cpe:2.3:h:ruijie:rg-est350:-
Ruijie » Rg-Ew1800gx » Version: N/A

cpe:2.3:h:ruijie:rg-ew1800gx:-
Ruijie » Rg-Est350 Firmware » Version: 3.0(1)b11p221

cpe:2.3:o:ruijie:rg-est350_firmware:3.0(1)b11p221
Ruijie » Rg-Ew1800gx Firmware » Version: 3.0(1)b11p226

cpe:2.3:o:ruijie:rg-ew1800gx_firmware:3.0(1)b11p226

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-56106

Products

Pricing

Contact Us