PT-2024-20280 · Ruijie · Ruijie Rg-Nbs2009G-P Rgos
Zty-1995
·
Published
2024-10-02
·
Updated
2024-11-13
·
CVE-2024-24117
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Ruijie RG-NBS2009G-P RGOS version 10.4(1)P2 Release (9736)
Description
The issue allows a remote attacker to gain privileges via the login check state component. This is due to an Insecure Permissions vulnerability. A remote attacker can exploit this flaw to gain privileges.
Recommendations
For Ruijie RG-NBS2009G-P RGOS version 10.4(1)P2 Release (9736), patch immediately to fix the Insecure Permissions vulnerability in the login check state component and review access controls to minimize the risk of exploitation.
Exploit
Fix
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ruijie Rg-Nbs2009G-P Rgos