Vulnerability Description
Ruijie EG Series Routers version EG_3.0(1)B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ruijie | Rg-Eg1000C Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg1000C | - |
| Ruijie | Rg-Eg1000E Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg1000E | - |
| Ruijie | Rg-Eg105G Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg105G | - |
| Ruijie | Rg-Eg105G V2 Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg105G V2 | - |
| Ruijie | Rg-Eg105G-E Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg105G-E | - |
| Ruijie | Rg-Eg105G-P Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg105G-P | - |
| Ruijie | Rg-Eg105G-Pe Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg105G-Pe | - |
| Ruijie | Rg-Eg105Gw\(T\) Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg105Gw\(T\) | - |
| Ruijie | Rg-Eg105Gw-X Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg105Gw-X | - |
| Ruijie | Rg-Eg2000Ce Firmware | 3.0\(1\)b11p216 |
| Ruijie | Rg-Eg2000Ce | - |
References
- https://github.com/delsploit/CVE-2023-48849ExploitThird Party Advisory
- https://github.com/delsploit/CVE-2023-48849ExploitThird Party Advisory
FAQ
What is CVE-2023-48849?
CVE-2023-48849 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Ruijie EG Series Routers version EG_3.0(1)B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering.
How severe is CVE-2023-48849?
CVE-2023-48849 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2023-48849?
Check the references section above for vendor advisories and patch information. Affected products include: Ruijie Rg-Eg1000C Firmware, Ruijie Rg-Eg1000C, Ruijie Rg-Eg1000E Firmware, Ruijie Rg-Eg1000E, Ruijie Rg-Eg105G Firmware.