Details of VAR-202502-3861

ID

VAR-202502-3861

TITLE

Beijing Xingwang Ruijie Network Technology Co., Ltd. RG-UAC-6000-E20 has a command execution vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-05474

DESCRIPTION

Beijing StarNet Ruijie Network Technology Co., Ltd. is an industry-leading ICT infrastructure and industry solution provider. Its main business is the research, design and sales of network equipment, network security products and cloud desktop solutions. Beijing StarNet Ruijie Network Technology Co., Ltd. RG-UAC-6000-E20 has a command execution vulnerability, which can be exploited by attackers to execute arbitrary commands.

Trust: 0.6

sources: CNVD: CNVD-2025-05474

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-05474

AFFECTED PRODUCTS

vendor:

starnet ruijie network

model:

rg-uac-6000-e20 1.0-r1.8.1

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2025-05474

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2025-05474
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2025-05474
severity:	HIGH
baseScore:	7.1
vectorString:	AV:N/AC:H/AU:S/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	HIGH
authentication:	SINGLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	3.9
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2025-05474

EXTERNAL IDS

db:

CNVD

id:

CNVD-2025-05474

Trust: 0.6

sources: CNVD: CNVD-2025-05474

SOURCES

db:

CNVD

id:

CNVD-2025-05474

LAST UPDATE DATE

2025-04-05T01:36:24.014000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2025-05474

date:

2025-03-21T00:00:00

SOURCES RELEASE DATE

db:

CNVD

id:

CNVD-2025-05474

date:

2025-02-28T00:00:00