PT-2025-45510 · Ruijie · Ruijie Nbr+1
Published
2025-11-07
·
Updated
2025-11-10
·
CVE-2020-36870
CVSS v4.0
9.2
Critical
| Vector | AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Ruijie Gateway EG and NBR models versions 11.1(6)B9P1 through 11.9(4)B12P1
Description
The EWEB management system in various Ruijie Gateway EG and NBR models contains a code execution issue. Attackers can exploit front-end code when features like guest authentication, local server authentication, or screen mirroring are enabled, potentially gaining access or executing commands on affected devices. The Shadowserver Foundation first observed exploitation evidence on 2025-06-07 UTC. The vulnerability is exploitable with zero authentication through guest authentication features.
Recommendations
Versions 11.1(6)B9P1 through 11.9(4)B12P1 should be updated.
Fix
RCE
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ruijie Gateway Eg
Ruijie Nbr