VYPR
Unrated severityNVD Advisory· Published Dec 6, 2024· Updated Dec 6, 2024

Ruijie Reyee OS Improper Handling of Insufficient Permissions or Privileges

CVE-2024-46874

Description

Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow MQTT clients connecting with device credentials to send messages to some topics. Attackers with device credentials could issue commands to other devices on behalf of Ruijie's cloud.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.