Security Advisory

CVE-2020-37015

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-01-29 14:28:32

Last updated 2026-05-26 11:51:41

Assigner VulnCheck

State PUBLISHED

Description

The Ruijie Networks Switch eWeb S29_RGOS version 11.4 contains a directory traversal vulnerability that allows unauthenticated attackers to access sensitive configuration files by manipulating file path parameters. Attackers can exploit the /download.do endpoint with ../ sequences to retrieve system configuration files containing credentials and network settings.

← Browse all CVEs View on cve.org ↗