Vulnerability Description
Various Ruijie Gateway EG and NBR models firmware versions 11.1(6)B9P1 < 11.9(4)B12P1 contain a code execution vulnerability in the EWEB management system that can be abused via front-end functionality. Attackers can exploit front-end code when features such as guest authentication, local server authentication, or screen mirroring are enabled to gain access or execute commands on affected devices. Exploitation evidence was first observed by the Shadowserver Foundation on 2025-02-05 UTC.
Related Weaknesses (CWE)
References
- https://www.cnvd.org.cn/flaw/show/CNVD-2021-09650
- https://www.ruijie.com.cn/gy/xw-aqtg-gw/86747/
- https://www.ruijie.com.cn/gy/xw-aqtg-zw/85638/
- https://www.vulncheck.com/advisories/ruijie-networks-eg-and-nbr-series-routers-r
FAQ
What is CVE-2020-36870?
CVE-2020-36870 is a documented vulnerability. Various Ruijie Gateway EG and NBR models firmware versions 11.1(6)B9P1 < 11.9(4)B12P1 contain a code execution vulnerability in the EWEB management system that can be abused via front-end functionalit...
How severe is CVE-2020-36870?
CVSS scoring is not yet available for CVE-2020-36870. Check NVD for updates.
Is there a patch for CVE-2020-36870?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.