CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-56091

OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.9%

CVSS Severity

CVSS v3 Score 8.8

References

https://1drv.ms/f/c/12406a392c92914b/EgUg1zJuaItDmLxZhkCg4B8BcJTRYnXyX4ePIIjNoZrRew?e=a23cK6
https://1drv.ms/t/c/12406a392c92914b/EdiWfxSbC0pAu_oksKjm2xgBXSCavYBBJt8V51JkcH4Dsw?e=OhOVCN
https://github.com/flegoity/Ruijie-Multiple-Devices-Vulnerability-Reports-for-CVE/blob/main/CVE-2025-56091.md

Products affected by CVE-2025-56091

Ruijie » Rg-Ew1800gx » Version: N/A

cpe:2.3:h:ruijie:rg-ew1800gx:-
Ruijie » Rg-Ew300r » Version: N/A

cpe:2.3:h:ruijie:rg-ew300r:-
Ruijie » Rg-Ew1800gx Firmware » Version: 3.0(1)b11p226

cpe:2.3:o:ruijie:rg-ew1800gx_firmware:3.0(1)b11p226
Ruijie » Rg-Ew300r Firmware » Version: 3.0(1)b11p301

cpe:2.3:o:ruijie:rg-ew300r_firmware:3.0(1)b11p301

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-56091

Products

Pricing

Contact Us