CVE-2019-16639

Name of the Vulnerable Software and Affected Versions Ruijie EG-2000SE versions 11.9 B11P1

Description The issue is related to the newcli.php API interface in the Ruijie EG-2000SE gateway, which lacks access control. This allows an attacker with web interface access to use TELNET commands and potentially show admin passwords via the "mode url=exec&command=" substring. Exploitation of this issue can enable a remote attacker to elevate privileges and gain unauthorized access to protected information.

Recommendations For version 11.9 B11P1, consider restricting access to the newcli.php API interface until a patch is available. As a temporary workaround, avoid using the "mode url=exec&command=" substring in the API endpoint to minimize the risk of exploitation.