CVE-2023-34644

Name of the Vulnerable Software and Affected Versions Ruijie Networks RG-EW series home routers and repeaters version EW 3.0(1)B11P204 Ruijie Networks RG-NBS and RG-S1930 series switches version SWITCH 3.0(1)B11P218 Ruijie Networks RG-EG series business VPN routers version EG 3.0(1)B11P216 Ruijie Networks EAP and RAP series wireless access points version AP 3.0(1)B11P218 Ruijie Networks NBC series wireless controllers version AC 3.0(1)B11P86

Description The issue allows unauthorized remote attackers to gain the highest privileges via a crafted POST request to "/cgi-bin/luci/api/auth". This enables remote attackers to gain escalated privileges.

Recommendations For Ruijie Networks RG-EW series home routers and repeaters version EW 3.0(1)B11P204, consider disabling access to the "/cgi-bin/luci/api/auth" endpoint until a patch is available. For Ruijie Networks RG-NBS and RG-S1930 series switches version SWITCH 3.0(1)B11P218, restrict access to the "/cgi-bin/luci/api/auth" endpoint to minimize the risk of exploitation. For Ruijie Networks RG-EG series business VPN routers version EG 3.0(1)B11P216, avoid using the vulnerable API endpoint until the issue is resolved. For Ruijie Networks EAP and RAP series wireless access points version AP 3.0(1)B11P218, consider temporarily disabling the API endpoint "/cgi-bin/luci/api/auth" to prevent exploitation. For Ruijie Networks NBC series wireless controllers version AC 3.0(1)B11P86, limit access to the vulnerable endpoint to reduce the risk of attack. At the moment, there is no information about a newer version that contains a fix for this vulnerability.