Sign-up

ID

VAR-201909-1664


TITLE

Information disclosure vulnerability in Ruijie's unified online behavior management and auditing system

Trust: 0.6

sources: CNVD: CNVD-2019-27485

DESCRIPTION

Ruijie Networks Co., Ltd. is a company that provides end-to-end solutions for users in various industries using new technologies such as cloud computing, SDN, mobile internet, big data, and the Internet of Things. An information disclosure vulnerability exists in Ruijie's unified online behavior management and auditing system. Attackers can use this vulnerability to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2019-27485

IOT TAXONOMY

category:['IoT']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2019-27485

AFFECTED PRODUCTS

vendor:ruijiemodel:unified online behavior management and auditing systemscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2019-27485

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2019-27485
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2019-27485
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2019-27485

PATCH

title:Information disclosure vulnerability in Ruijie's unified online behavior management and auditing systemurl:https://www.cnvd.org.cn/patchinfo/show/171915

Trust: 0.6

sources: CNVD: CNVD-2019-27485

EXTERNAL IDS

db:CNVDid:CNVD-2019-27485

Trust: 0.6

sources: CNVD: CNVD-2019-27485

SOURCES

db:CNVDid:CNVD-2019-27485

LAST UPDATE DATE

2022-05-04T10:00:12.605000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2019-27485date:2019-08-22T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2019-27485date:2019-09-07T00:00:00