Ruijie RG-NBR700GW 10.3(4b12) router lacks cookie verification when resetting the password, resulting in an administrator password reset vulnerability. An attacker can use this vulnerability to log in to the device and disrupt the business of the enterprise.
References
Configurations
Configuration 1 (hide)
AND |
|
History
30 Jun 2025, 12:47
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/adminquit/CVE-2024-28288/blob/d8223c6d45af877669c27fa0a95adfe51924fa86/CVE-2024-28288/CVE-2024-28288.md - Broken Link | |
References | () https://pan.baidu.com/s/1H4J_eA6wSCnDEsUSAWIzsg?pwd=CVE1 - Broken Link | |
First Time |
Ruijie
Ruijie rg-nbr700gw Firmware Ruijie rg-nbr700gw |
|
CPE | cpe:2.3:h:ruijie:rg-nbr700gw:-:*:*:*:*:*:*:* cpe:2.3:o:ruijie:rg-nbr700gw_firmware:10.3\(4b12\):*:*:*:*:*:*:* |
21 Nov 2024, 09:06
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/adminquit/CVE-2024-28288/blob/d8223c6d45af877669c27fa0a95adfe51924fa86/CVE-2024-28288/CVE-2024-28288.md - | |
References | () https://pan.baidu.com/s/1H4J_eA6wSCnDEsUSAWIzsg?pwd=CVE1 - |
04 Nov 2024, 15:35
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
CWE | CWE-565 | |
Summary |
|
30 Mar 2024, 01:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-03-30 01:15
Updated : 2025-06-30 12:47
NVD link : CVE-2024-28288
Mitre link : CVE-2024-28288
CVE.ORG link : CVE-2024-28288
JSON object : View
Products Affected
ruijie
- rg-nbr700gw
- rg-nbr700gw_firmware
CWE
CWE-565
Reliance on Cookies without Validation and Integrity Checking