Buffer Overflow Vulnerability in Ruijie EG-2000 Series Gateway
CVE-2019-16641

Currently unrated

Key Information:

Vendor: Ruijie Networks
Vendor: CVE Published:; 16 July 2024

Summary

A buffer overflow vulnerability exists in the Ruijie EG-2000 series gateway's client.so module. This security flaw allows an attacker to exploit the login.php script, granting them the ability to log into any user account without the need for valid credentials. The issue specifically affects the EG-2000SE model running the EG_RGOS 11.1(1)B1 version. Prompt attention to this vulnerability is advisable to mitigate unauthorized access risks and protect sensitive data.

References

https://0x.mk/?p=239

Timeline

Vulnerability published
Jul 16, 2024
Vulnerability Reserved
Sep 20, 2019