Compare Products
Hide
VS
The command injection vulnerability exists on certain RG-EW series devices after authorization. An attacker can inject and execute commands after obtaining the eWeb login credentials.
Internal vulnerability ID: PSIRT-2025-10310
External vulnerability ID: CVE-2025-11073,NVDB-TEMP-CNVDB-2025399731
| Product Series |
Affected Product |
Affected Version |
Repair Versions |
| RG-EW series |
RG-M18 RG-R4 RG-E6 RG-E5 RG-M32 RG-R6 RG-EW1800GX-PRO RG-EW1200R RG-REX12 RG-EW1200G PRO RG-EW300 PRO RG-EW300N RG-EW1200 RG-EW3200GX PRO RG-EW300R RG-EW6000GX RG-EW7200BE-PRO RG-EW300T RG-EW1300G RG-EW3000GX RG-EW3000GX-PRO RG-E4 |
Earlier versions than EW_3.0(1)B11P380 |
EW_3.0(1)B11P380 or later |
Obtaining Fixed Software:
Vulnerabilities are scored based on the CVSS v3.1 scoring system. For details, please refer to: https://www.first.org/cvss/v3.1/specification-document.
Base Score: 4.7
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
This vulnerability was reported by Sheep from the ROIS team of Fuzhou University.
| Date |
Revision History |
| 2025-11-11 |
V1.0 Initial Release |
Ruijie Networks adheres to protecting the ultimate interests of users with best efforts and the principle of responsible disclosure and deals with product security issues through our response mechanism.
To enjoy Ruijie Networks PSIRT services and obtain Ruijie Networks product vulnerability information, please visit https://www.ruijienetworks.com/support/securityBulletins.
To report a security vulnerability in Ruijie Networks products and solutions, please send it to PSIRT@ruijie.com.cn. For details, please visit https://www.ruijienetworks.com/support/securityBulletins/vulnerability_reporting.
You can contact us through the following channels:
Ruijie Networks websites use cookies to deliver and improve the website experience.
See our cookie policy for further details on how we use cookies and how to change your cookie settings.
Cookie Manager
When you visit any website, the website will store or retrieve the information on your browser. This process is mostly in the form of cookies. Such information may involve your personal information, preferences or equipment, and is mainly used to enable the website to provide services in accordance with your expectations. Such information usually does not directly identify your personal information, but it can provide you with a more personalized network experience. We fully respect your privacy, so you can choose not to allow certain types of cookies. You only need to click on the names of different cookie categories to learn more and change the default settings. However, blocking certain types of cookies may affect your website experience and the services we can provide you.
Through this type of cookie, we can count website visits and traffic sources in order to evaluate and improve the performance of our website. This type of cookie can also help us understand the popularity of the page and the activity of visitors on the site. All information collected by such cookies will be aggregated to ensure the anonymity of the information. If you do not allow such cookies, we will have no way of knowing when you visited our website, and we will not be able to monitor website performance.
This type of cookie is necessary for the normal operation of the website and cannot be turned off in our system. Usually, they are only set for the actions you do, which are equivalent to service requests, such as setting your privacy preferences, logging in, or filling out forms. You can set your browser to block or remind you of such cookies, but certain functions of the website will not be available. Such cookies do not store any personally identifiable information.
Contact Us
How can we help you?
Your opinions and feelings are crucial for our improvement.
Fill in the survey
