Sign-up

ID

VAR-202103-1749


TITLE

Ruijie's unified online behavior management and audit system has weak password vulnerabilities

Trust: 0.6

sources: CNVD: CNVD-2021-13491

DESCRIPTION

Ruijie Networks Co., Ltd. is a company that uses new technologies such as cloud computing, SDN, mobile internet, big data, and the Internet of Things to provide end-to-end solutions for users in various industries. Ruijie's unified online behavior management and audit system has weak password vulnerabilities. Attackers can use this vulnerability to log in to the background to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2021-13491

IOT TAXONOMY

category:['IoT']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2021-13491

AFFECTED PRODUCTS

vendor:ruijiemodel:unified internet behavior management and audit system rg-uac seriesscope:eqversion:6000

Trust: 0.6

sources: CNVD: CNVD-2021-13491

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2021-13491
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2021-13491
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2021-13491

PATCH

title:Patch for Ruijie's unified online behavior management and audit system has weak password vulnerabilitiesurl:https://www.cnvd.org.cn/patchinfo/show/305056

Trust: 0.6

sources: CNVD: CNVD-2021-13491

EXTERNAL IDS

db:CNVDid:CNVD-2021-13491

Trust: 0.6

sources: CNVD: CNVD-2021-13491

SOURCES

db:CNVDid:CNVD-2021-13491

LAST UPDATE DATE

2022-05-04T10:14:49.056000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2021-13491date:2021-12-14T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2021-13491date:2021-03-11T00:00:00