Ruijienetworks: >> Reyee Os >> 1.204.1614 Security Vulnerabilities
ReyeeOS 1.204.1614 contains an unencrypted CWMP communication vulnerability that allows attackers to intercept and manipulate device communication through a man-in-the-middle attack. Attackers can create a fake CWMP server to inject and execute arbitrary commands on Ruijie Reyee Cloud devices by exploiting the unprotected HTTP polling requests.
CVSS Score
8.1
EPSS Score
0.0
Published
2025-12-15