Ruijie M18-Ew Firmware vulnerabilities
3 known vulnerabilities affecting ruijie/m18-ew_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3
Vulnerabilities
Page 1 of 1
CVE-2025-56101P2HIGHCVSS 8.8v3.0\(1\)b11p2262025-12-11
CVE-2025-56101 [HIGH] CWE-78 CVE-2025-56101: OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to
OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafted POST request to the module_get in file /usr/local/lua/dev_sta/networkConnect.lua.
nvd
CVE-2025-56089P2HIGHCVSS 8.8v3.0\(1\)b11p2262025-12-11
CVE-2025-56089 [HIGH] CWE-78 CVE-2025-56089: OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to
OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_sta/nbr_cwmp.lua.
nvd
CVE-2025-56114P2HIGHCVSS 8.8v3.0\(1\)b11p2262025-12-11
CVE-2025-56114 [HIGH] CWE-78 CVE-2025-56114: OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to
OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers to execute arbitrary commands via a crafted POST request to the module_set in file /usr/local/lua/dev_config/config_retain.lua.
nvd