How severe is CVE-2024-4814?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.3 out of 10.

What type of vulnerability is CVE-2024-4814?

This is classified as CWE-78, which is a common weakness in software security.

CVE-2024-4814 - MEDIUM Severity | CVSS 6.3

Vulnerability Description

A vulnerability classified as critical was found in Ruijie RG-UAC up to 20240506. Affected by this vulnerability is an unknown functionality of the file /view/networkConfig/RouteConfig/StaticRoute/static_route_edit_commit.php. The manipulation of the argument oldipmask/oldgateway leads to os command injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-263935. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Related Vulnerabilities

CVE-2015-7769

MEDIUM

CVSS:6.3(Medium)

baserCMS 3.0.2 through 3.0.8 allows remote authenticated users to execute arbitrary OS commands via unspecified vectors.

CWE-782015

CVE-2016-0325

MEDIUM

CVSS:6.3(Medium)

IBM Rational Collaborative Lifecycle Management 3.0.1.6 before iFix8, 4.0 before 4.0.7 iFix11, 5.0 before 5.0.2 iFix18, and 6.0 before 6.0.2 iFix5; Rational Quality Manager 3.0.1.6 before iFix8, 4.0 b...

CWE-782016

CVE-2021-26970

MEDIUM

CVSS:6.3(Medium)

A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. Vulnerabilities in the AirWave web-base management i...

CWE-782021

CVE-2021-34612

MEDIUM

CVSS:6.3(Medium)

A remote arbitrary command execution vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.10.0, 6.9.6 and 6.8.9. Aruba has released updates to ClearPass Policy Manager...

CWE-782021

CVE-2021-34613

MEDIUM

CVSS:6.3(Medium)

CWE-782021

CVE-2021-34614

MEDIUM

CVSS:6.3(Medium)

CWE-782021