Security Advisory

CVE-2025-56099

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-11 00:00:00

Last updated 2025-12-12 17:35:47

Assigner mitre

State PUBLISHED

Description

OS Command Injection vulnerability in Ruijie RG-YST AP_3.0(1)B11P280YST250F allowing attackers to execute arbitrary commands via a crafted POST request to the pwdmodify in file /usr/lib/lua/luci/modules/common.lua.

← Browse all CVEs View on cve.org ↗