Rg\-Nbs2009g\-P_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Rg\-Nbs2009g\-P_firmware
(Ruijie)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	3

Date	Id	Summary	Products	Score	Patch	Annotated
2023-08-17	CVE-2023-38902	A command injection vulnerability in RG-EW series home routers and repeaters v.EW_3.0(1)B11P219, RG-NBS and RG-S1930 series switches v.SWITCH_3.0(1)B11P219, RG-EG series business VPN routers v.EG_3.0(1)B11P219, EAP and RAP series wireless access points v.AP_3.0(1)B11P219, and NBC series wireless controllers v.AC_3.0(1)B11P219 allows an authorized attacker to execute arbitrary commands on remote devices by sending a POST request to /cgi-bin/luci/api/cmd via the remoteIp field.	Rg\-Eap101_firmware, Rg\-Eap101_v2_firmware, Rg\-Eap102\(F\)_firmware, Rg\-Eap102_firmware, Rg\-Eap102_v2_firmware, Rg\-Eap162\(G\)_firmware, Rg\-Eap201_firmware, Rg\-Eap202_firmware, Rg\-Eap212\(F\)_firmware, Rg\-Eap212\(G\)_firmware, Rg\-Eap262\(G\)_firmware, Rg\-Eap602_firmware, Rg\-Eap662\(G\)_firmware, Rg\-Eg105g\-E_firmware, Rg\-Eg105g\-Pe_firmware, Rg\-Eg105g_v2_firmware, Rg\-Eg210g\-E_firmware, Rg\-Eg210g\-P_firmware, Rg\-Eg210g\-Pe_firmware, Rg\-Ew1200_firmware, Rg\-Ew1200g_pro_firmware, Rg\-Ew1200r_firmware, Rg\-Ew1300g_firmware, Rg\-Ew1800gx_pro_firmware, Rg\-Ew3000gx_pro_firmware, Rg\-Ew300_pro_firmware, Rg\-Ew300r_firmware, Rg\-Ew3200gx_pro_firmware, Rg\-Nb3200\-24gt4xs_firmware, Rg\-Nbc256_firmware, Rg\-Nbc512_firmware, Rg\-Nbs1850gc_firmware, Rg\-Nbs1850gc_v2_firmware, Rg\-Nbs2000_firmware, Rg\-Nbs2009g\-P_firmware, Rg\-Nbs200_firmware, Rg\-Nbs2026g\-P_firmware, Rg\-Nbs2026g_firmware, Rg\-Nbs226f_firmware, Rg\-Nbs228f_firmware, Rg\-Nbs252f_firmware, Rg\-Nbs3100\-24gt4sfp\-P_firmware, Rg\-Nbs3100\-24gt4sfp\-P_v2_firmware, Rg\-Nbs3100\-24gt4sfp_firmware, Rg\-Nbs3100\-48gt4sfp_firmware, Rg\-Nbs3100\-8gt2sfp\-P_firmware, Rg\-Nbs3100\-8gt2sfp_firmware, Rg\-Nbs3200\-24gt4xs\-P_firmware, Rg\-Nbs3200\-24sfp\/8gt4xs_firmware, Rg\-Nbs3200\-48gt4xs\-P_firmware, Rg\-Nbs3200\-48gt4xs_firmware, Rg\-Nbs5100\-24gt4sfp_firmware, Rg\-Nbs5100\-48gt4sfp_firmware, Rg\-Nbs5200\-24gt4x_firmware, Rg\-Nbs5200\-24sfp\/8gt4xs_firmware, Rg\-Nbs5200\-48gt4xs_firmware, Rg\-Nbs5300\-48mg6xs_firmware, Rg\-Nbs5528xg_firmware, Rg\-Nbs5552xg_firmware, Rg\-Nbs5552xg_v2\.0_firmware, Rg\-Nbs5628xg_firmware, Rg\-Nbs5652xg_firmware, Rg\-Nbs5710\-24gt4sfp\-E\-P_firmware, Rg\-Nbs5710\-24gt4sfp\-E_firmware, Rg\-Nbs5710\-48gt4sfp\-E_firmware, Rg\-Nbs5750\-28gt4xs\-E_firmware, Rg\-Nbs5750v2\-24gt4xs\-E_firmware, Rg\-Nbs5750v2\-24sfp4xs\-E_firmware, Rg\-Nbs5750v2\-48gt4xs\-E_firmware, Rg\-Nbs5816xs_firmware, Rg\-Nbs6002_firmware, Rg\-Nbs6100\-20xs4vs2qxs\-S_firmware, Rg\-Nbs7003_firmware, Rg\-Nbs7006_firmware, Rg\-Rap100_firmware, Rg\-Rap1200\(E\)_firmware, Rg\-Rap1200\(F\)_firmware, Rg\-Rap120_firmware, Rg\-Rap120v2_firmware, Rg\-Rap1260\(G\)_firmware, Rg\-Rap2200\(E\)_firmware, Rg\-Rap2200\(F\)_firmware, Rg\-Rap2200\(G\)_firmware, Rg\-Rap2260\(E\)_firmware, Rg\-Rap2260\(G\)_firmware, Rg\-Rap6260\(G\)_firmware, Rg\-Rap6261\(Cd\)_firmware, Rg\-Rap6261\(E\)_firmware, Rg\-Rap630cd_firmware, Rg\-Rap630ioda_firmware, Rg\-S1930\-24gt4sfp_firmware, Rg\-S1930\-24t4sfp\-P_firmware, Rg\-S1930\-24t4sfp_firmware, Rg\-S1930\-8gt2sfp\-P_firmware, Rg\-S1930\-8gt2sfp_firmware, Rg\-S1930\-8t2sfp\-P_firmware	8.8
2024-10-02	CVE-2024-24116	An issue in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release(9736) allows a remote attacker to gain privileges via the system/config_menu.htm.	Rg\-Nbs2009g\-P_firmware	9.8
2024-10-02	CVE-2024-24117	Insecure Permissions vulnerability in Ruijie RG-NBS2009G-P RGOS v.10.4(1)P2 Release (9736) allows a remote attacker to gain privileges via the login check state component.	Rg\-Nbs2009g\-P_firmware	9.8