Details of VAR-202502-3792

ID

VAR-202502-3792

TITLE

Beijing Xingwang Ruijie Network Technology Co., Ltd. RG-UAC-6000-E20 has a command execution vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-04796

DESCRIPTION

Beijing Xingwang Ruijie Network Technology Co., Ltd. is a provider of ICT infrastructure and industry solutions. Its main business is the research, design and sales of network equipment, network security products and cloud desktop solutions. Beijing Xingwang Ruijie Network Technology Co., Ltd. RG-UAC-6000-E20 has a command execution vulnerability, which can be exploited by attackers to execute arbitrary commands.

Trust: 0.6

sources: CNVD: CNVD-2025-04796

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-04796

AFFECTED PRODUCTS

vendor:

starnet ruijie network

model:

rg-uac-6000-e20

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2025-04796

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2025-04796
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2025-04796
severity:	HIGH
baseScore:	7.1
vectorString:	AV:N/AC:H/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2025-04796

EXTERNAL IDS

db:

CNVD

id:

CNVD-2025-04796

Trust: 0.6

sources: CNVD: CNVD-2025-04796

SOURCES

db:

CNVD

id:

CNVD-2025-04796

LAST UPDATE DATE

2025-03-21T23:33:33.683000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2025-04796

date:

2025-03-11T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2025-04796

date:

2025-02-27T00:00:00