Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x uses an inherently dangerous function which could allow an attacker to send a malicious MQTT message resulting in devices executing arbitrary OS commands.
Metrics
Affected Vendors & Products
References
History
Tue, 10 Dec 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Ruijienetworks
Ruijienetworks reyee Os |
|
CPEs | cpe:2.3:o:ruijienetworks:reyee_os:*:*:*:*:*:*:*:* | |
Vendors & Products |
Ruijienetworks
Ruijienetworks reyee Os |
Fri, 06 Dec 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Ruijie
Ruijie reyee Os |
|
CPEs | cpe:2.3:o:ruijie:reyee_os:*:*:*:*:*:*:*:* | |
Vendors & Products |
Ruijie
Ruijie reyee Os |
|
Metrics |
ssvc
|
Fri, 06 Dec 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x uses an inherently dangerous function which could allow an attacker to send a malicious MQTT message resulting in devices executing arbitrary OS commands. | |
Title | Ruijie Reyee OS Use of Inherently Dangerous Function | |
Weaknesses | CWE-242 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2024-12-06T18:25:06.031Z
Updated: 2024-12-06T20:24:31.142Z
Reserved: 2024-11-20T23:41:59.187Z
Link: CVE-2024-52324
Vulnrichment
Updated: 2024-12-06T19:23:13.590Z
NVD
Status : Analyzed
Published: 2024-12-06T19:15:13.083
Modified: 2024-12-10T19:42:56.737
Link: CVE-2024-52324
Redhat
No data.