CRITICAL🇵🇱 Wersja polska

CVE-2024-28288

CVSS 9.8v3.1pub. 2024-03-30upd. 2025-06-30

Ruijie RG-NBR700GW 10.3(4b12) router lacks cookie verification when resetting the password, resulting in an administrator password reset vulnerability. An attacker can use this vulnerability to log in to the device and disrupt the business of the enterprise.

🤖 AI Analysis
How it works

The password reset mechanism in the device relies on cookies as an element of user identity verification, however the application does not verify the correctness or authenticity of this cookie (CWE-565: Reliance on Cookies without Validation and Integrity Checking). An attacker can send a crafted password reset request with any or empty cookie, thereby bypassing the authentication mechanism. As a result, it is possible to set a new administrator password without knowledge of previous authentication credentials.

Impact

An attacker gains access to the router's administrative panel with administrator privileges, allowing full control over device configuration, network traffic interception, and disruption of enterprise network infrastructure continuity.

Mitigation & patch

Apply patches available from the manufacturer according to references. Until the fix is implemented, it is recommended to restrict access to the router's administrative interface only to trusted IP addresses and isolate the management panel from the public network using a firewall.

Who is affected

Ruijie RG-NBR700GW with firmware version 10.3(4b12)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Ruijie Rg Nbr700gw

    HW
    Ruijie
    wszystkie wersje
  • Ruijie Rg Nbr700gw Firmware

    OS
    Ruijie
    10.3\(4b12\)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-56752CRITICAL9.4PL ✓ten sam vendor

Pominięcie uwierzytelnienia w przełącznikach Ruijie RG-ES Series

CVE-2024-42936CRITICAL9.8PL ✓ten sam vendor

RCE w usłudze mqlink.elf urządzenia Ruijie RG-EW300N via MQTT

CVE-2024-24117CRITICAL9.8PL ✓ten sam vendor

Nieprawidłowe uprawnienia w Ruijie RG-NBS2009G-P umożliwiają privilege escalation

CVE-2024-24116CRITICAL9.8PL ✓ten sam vendor

Nieautoryzowane uzyskanie uprawnień w Ruijie RG-NBS2009G-P via config_menu.htm

CVE-2019-16639CRITICAL9.8PL ✓ten sam vendor

Command injection w Ruijie EG-2000SE — dostęp bez uwierzytelnienia