High severity7.5NVD Advisory· Published Jan 29, 2026· Updated May 26, 2026
CVE-2020-37015
CVE-2020-37015
Description
The Ruijie Networks Switch eWeb S29_RGOS version 11.4 contains a directory traversal vulnerability that allows unauthenticated attackers to access sensitive configuration files by manipulating file path parameters. Attackers can exploit the /download.do endpoint with '../' sequences to retrieve system configuration files containing credentials and network settings.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 11.4
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.