cbcvebase.
CVE-2023-48849
published 2023-12-06

CVE-2023-48849: Ruijie EG Series Routers version EG_3.0(1)B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering.

PriorityP262critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.29%
66.6th percentile
Ruijie EG Series Routers version EG_3.0(1)B11P216 and before allows unauthenticated attackers to remotely execute arbitrary code due to incorrect filtering.

Affected

21 ranges
VendorProductVersion rangeFixed in
ruijierg-eg1000c_firmware
ruijierg-eg1000e_firmware
ruijierg-eg105g-e_firmware
ruijierg-eg105g-p_firmware
ruijierg-eg105g-pe_firmware
ruijierg-eg105g_firmware
ruijierg-eg105g_v2_firmware
ruijierg-eg105gw-x_firmware
ruijierg-eg105gw_firmware
ruijierg-eg2000ce_firmware
ruijierg-eg209gs_firmware
ruijierg-eg2100-p_firmware
ruijierg-eg210g-e_firmware
ruijierg-eg210g-p_firmware
ruijierg-eg210g-pe_firmware
ruijierg-eg3000eu_firmware
ruijierg-eg3000xe_firmware
ruijierg-eg305gh-p-e_firmware
ruijierg-eg310gh-e_firmware
ruijierg-eg3230_firmware
ruijierg-eg3250_firmware
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.