Sign-up

ID

VAR-202102-1571


TITLE

Ruijie Networks Co., Ltd. has a weak password vulnerability in the login area of network equipment

Trust: 0.6

sources: CNVD: CNVD-2021-05099

DESCRIPTION

Ruijie Networks Co., Ltd. is a professional network manufacturer with a full range of network equipment product lines and solutions including switches, routers, software, security firewalls, wireless products, and storage. A weak password vulnerability exists in the login area of Ruijie Networks Co., Ltd. network equipment. Attackers can use this vulnerability to log in to the system and obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-05099

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-05099

AFFECTED PRODUCTS

vendor:ruijiemodel:switchscope: - version: -

Trust: 0.6

vendor:ruijiemodel:routerscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2021-05099

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-05099
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2021-05099
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-05099

PATCH

title:Patch for Ruijie Networks Co., Ltd. has a weak password vulnerability in the login area of network equipmenturl:https://www.cnvd.org.cn/patchinfo/show/304891

Trust: 0.6

sources: CNVD: CNVD-2021-05099

EXTERNAL IDS

db:CNVDid:CNVD-2021-05099

Trust: 0.6

sources: CNVD: CNVD-2021-05099

SOURCES

db:CNVDid:CNVD-2021-05099

LAST UPDATE DATE

2022-05-04T10:03:13.233000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-05099date:2021-12-14T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-05099date:2021-02-25T00:00:00