216.73.216.86

CVE-2019-16639

· Published 16/07/2024 17:15 · Modified 16/07/2024 18:00

Labels: CVE-2019-16639 2024-07-16CVE-2019-16639[email protected]

Essential information

Published
16/07/2024 17:15
Modified
16/07/2024 18:00
Author
Creator
CISA KEV
No
CWE

Description

An issue was found on the Ruijie EG-2000 series gateway. There is a newcli.php API interface without access control, which can allow an attacker (who only has web interface access) to use TELNET commands and/or show admin passwords via the mode_url=exec&command= substring. This affects EG-2000SE EG_RGOS 11.9 B11P1.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
[email protected]
NVD
View on NVD

References