CVE-2024-48874

Name of the Vulnerable Software and Affected Versions Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x

Description The issue allows attackers to force Ruijie's proxy servers to perform any request the attackers choose, potentially giving them access to internal services used by Ruijie and their internal cloud infrastructure via AWS cloud metadata services. This is related to insufficient request checking on the server side, which can be exploited for a Server-Side Request Forgery (SSRF) attack.

Recommendations For Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x, consider disabling the proxy server functionality until a patch is available to prevent attackers from manipulating proxy servers for unauthorized access. Restrict access to internal services and cloud infrastructure to minimize the risk of exploitation. As a temporary workaround, limit the use of AWS cloud metadata services to reduce the attack surface. At the moment, there is no information about a newer version that contains a fix for this vulnerability.