How severe is CVE-2024-4502?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.7 out of 10.

What type of vulnerability is CVE-2024-4502?

This is classified as CWE-78, which is a common weakness in software security.

CVE-2024-4502 - MEDIUM Severity | CVSS 4.7

Vulnerability Description

A vulnerability classified as critical has been found in Ruijie RG-UAC up to 20240428. Affected is an unknown function of the file /view/dhcp/dhcpClient/dhcp_client_commit.php. The manipulation of the argument ifName leads to os command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-263106 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Related Vulnerabilities

CVE-2016-1141

MEDIUM

CVSS:4.7(Medium)

KDDI HOME SPOT CUBE devices before 2 allow remote authenticated users to execute arbitrary OS commands via unspecified vectors.

CWE-782016

CVE-2023-6795

MEDIUM

CVSS:4.7(Medium)

An OS command injection vulnerability in Palo Alto Networks PAN-OS software enables an authenticated administrator to disrupt system processes and potentially execute arbitrary code with limited privi...

CWE-782023

CVE-2024-21906

MEDIUM

CVSS:4.7(Medium)

An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute commands v...

CWE-782024

CVE-2024-4255

MEDIUM

CVSS:4.7(Medium)

A vulnerability, which was classified as critical, has been found in Ruijie RG-UAC up to 20240419. This issue affects some unknown processing of the file /view/network Config/GRE/gre_edit_commit.php. ...

CWE-782024

CVE-2024-4501

MEDIUM

CVSS:4.7(Medium)

A vulnerability was found in Ruijie RG-UAC up to 20240428. It has been rated as critical. This issue affects some unknown processing of the file /view/bugSolve/captureData/commit.php. The manipulation...

CWE-782024

CVE-2024-4503

MEDIUM

CVSS:4.7(Medium)

A vulnerability classified as critical was found in Ruijie RG-UAC up to 20240428. Affected by this vulnerability is an unknown functionality of the file /view/dhcp/dhcpConfig/dhcp_relay_commit.php. Th...

CWE-782024