VYPR

RG-UAC

by Ruijie Networks

CVEs (27)

  • CVE-2023-7304CriOct 15, 2025
    risk 0.61cvss epss 0.04

    Ruijie RG-UAC Application Management Gateway contains a command injection vulnerability via the 'nmc_sync.php' interface. An unauthenticated attacker able to reach the affected endpoint can inject shell commands via crafted request data, causing the application to execute…

  • CVE-2020-21627HigNov 16, 2021
    risk 0.49cvss 7.5epss 0.01

    Ruijie RG-UAC commit 9071227 was discovered to contain a vulnerability in the component /current_action.php?action=reboot, which allows attackers to cause a denial of service (DoS) via unspecified vectors.

  • CVE-2024-6187MedJun 20, 2024
    risk 0.42cvss 6.3epss 0.08

    A vulnerability has been found in Ruijie RG-UAC 1.0 and classified as critical. This vulnerability affects unknown code of the file /view/vpn/autovpn/sub_commit.php. The manipulation of the argument key leads to os command injection. The attack can be initiated remotely. The…

  • CVE-2024-6186MedJun 20, 2024
    risk 0.42cvss 6.3epss 0.09

    A vulnerability, which was classified as critical, was found in Ruijie RG-UAC 1.0. This affects an unknown part of the file /view/userAuthentication/SSO/commit.php. The manipulation of the argument ad_log_name leads to os command injection. It is possible to initiate the attack…

  • CVE-2024-6185MedJun 20, 2024
    risk 0.42cvss 6.3epss 0.09

    A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC 1.0. Affected by this issue is the function get_ip_addr_details of the file /view/dhcp/dhcpConfig/commit.php. The manipulation of the argument ethname leads to os command injection. The attack may…

  • CVE-2024-6184MedJun 20, 2024
    risk 0.42cvss 6.3epss 0.10

    A vulnerability classified as critical was found in Ruijie RG-UAC 1.0. Affected by this vulnerability is an unknown functionality of the file /view/systemConfig/reboot/reboot_commit.php. The manipulation of the argument servicename leads to os command injection. The attack can…

  • CVE-2024-4816MedMay 14, 2024
    risk 0.41cvss 6.3epss 0.06

    A vulnerability, which was classified as critical, was found in Ruijie RG-UAC up to 20240506. This affects an unknown part of the file /view/networkConfig/GRE/gre_add_commit.php. The manipulation of the argument name/remote/local/IP leads to os command injection. It is possible…

  • CVE-2024-4815MedMay 14, 2024
    risk 0.41cvss 6.3epss 0.06

    A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240506. Affected by this issue is some unknown functionality of the file /view/bugSolve/viewData/detail.php. The manipulation of the argument filename leads to os command injection. The…

  • CVE-2024-4814MedMay 14, 2024
    risk 0.41cvss 6.3epss 0.06

    A vulnerability classified as critical was found in Ruijie RG-UAC up to 20240506. Affected by this vulnerability is an unknown functionality of the file /view/networkConfig/RouteConfig/StaticRoute/static_route_edit_commit.php. The manipulation of the argument…

  • CVE-2024-4813MedMay 14, 2024
    risk 0.41cvss 6.3epss 0.06

    A vulnerability classified as critical has been found in Ruijie RG-UAC up to 20240506. Affected is an unknown function of the file /view/networkConfig/physicalInterface/interface_commit.php. The manipulation of the argument name leads to os command injection. It is possible to…

  • CVE-2024-6269MedJun 23, 2024
    risk 0.32cvss 4.7epss 0.21

    A vulnerability has been found in Ruijie RG-UAC 1.0 and classified as critical. This vulnerability affects the function get_ip.addr_details of the file /view/vpn/autovpn/sxh_vpnlic.php of the component HTTP POST Request Handler. The manipulation of the argument indevice leads to…

  • CVE-2024-5340MedMay 25, 2024
    risk 0.31cvss 4.7epss 0.08

    A vulnerability was found in Ruijie RG-UAC up to 20240516. It has been rated as critical. Affected by this issue is some unknown functionality of the file /view/vpn/autovpn/sub_commit.php. The manipulation of the argument key leads to os command injection. The attack may be…

  • CVE-2024-5339MedMay 25, 2024
    risk 0.31cvss 4.7epss 0.08

    A vulnerability was found in Ruijie RG-UAC up to 20240516. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /view/vpn/autovpn/online_check.php. The manipulation of the argument peernode leads to os command injection. The…

  • CVE-2024-5338MedMay 25, 2024
    risk 0.31cvss 4.7epss 0.08

    A vulnerability was found in Ruijie RG-UAC up to 20240516. It has been classified as critical. Affected is an unknown function of the file /view/vpn/autovpn/online.php. The manipulation of the argument peernode leads to os command injection. It is possible to launch the attack…

  • CVE-2024-5337MedMay 25, 2024
    risk 0.31cvss 4.7epss 0.09

    A vulnerability was found in Ruijie RG-UAC up to 20240516 and classified as critical. This issue affects some unknown processing of the file /view/systemConfig/sys_user/user_commit.php. The manipulation of the argument email2/user_name leads to os command injection. The attack…

  • CVE-2024-5336MedMay 25, 2024
    risk 0.31cvss 4.7epss 0.09

    A vulnerability has been found in Ruijie RG-UAC up to 20240516 and classified as critical. This vulnerability affects the function addVlan of the file /view/networkConfig/vlan/vlan_add_commit.php. The manipulation of the argument phyport leads to os command injection. The attack…

  • CVE-2024-4510MedMay 6, 2024
    risk 0.31cvss 4.7epss 0.07

    A vulnerability was found in Ruijie RG-UAC up to 20240428. It has been rated as critical. Affected by this issue is some unknown functionality of the file /view/networkConfig/ArpTable/arp_add_commit.php. The manipulation of the argument text_ip_addr/text_mac_addr leads to os…

  • CVE-2024-4509MedMay 6, 2024
    risk 0.31cvss 4.7epss 0.07

    A vulnerability was found in Ruijie RG-UAC up to 20240428. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /view/IPV6/naborTable/add_commit.php. The manipulation of the argument ip_addr/mac_addr leads to os command…

  • CVE-2024-4508MedMay 6, 2024
    risk 0.31cvss 4.7epss 0.07

    A vulnerability was found in Ruijie RG-UAC up to 20240428. It has been classified as critical. Affected is an unknown function of the file /view/IPV6/ipv6StaticRoute/static_route_edit_ipv6.php. The manipulation of the argument oldipmask/oldgateway/olddevname leads to os command…

  • CVE-2024-4507MedMay 6, 2024
    risk 0.31cvss 4.7epss 0.08

    A vulnerability was found in Ruijie RG-UAC up to 20240428 and classified as critical. This issue affects some unknown processing of the file /view/IPV6/ipv6StaticRoute/static_route_add_ipv6.php. The manipulation of the argument text_prefixlen/text_gateway/devname leads to os…

Page 1 of 2