CVE-2025-56095

Name of the Vulnerable Software and Affected Versions Ruijie RG-EW1200G PRO versions 1.00 through 4.00

Description An issue exists in Ruijie RG-EW1200G PRO that allows attackers to execute arbitrary commands. This is due to an OS Command Injection flaw within the nbr cwmp.lua file located at /usr/local/lua/dev sta/. Specifically, a crafted POST request to the module set function can be used to inject and execute commands. The module set function is vulnerable to this injection.

Recommendations Versions 1.00 through 4.00 should be updated when a fix is available. As a temporary workaround, consider restricting access to the module set function within the nbr cwmp.lua file until a patch is available.