CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-21627
https://notcve.org/view.php?id=CVE-2020-21627
Ruijie RG-UAC commit 9071227 was discovered to contain a vulnerability in the component /current_action.php?action=reboot, which allows attackers to cause a denial of service (DoS) via unspecified vectors. Se ha detectado que el commit 9071227 de Ruijie RG-UAC contiene una vulnerabilidad en el componente /current_action.php?action=reboot, que permite a los atacantes causar una denegación de servicio (DoS) por medio de vectores no especificados • https://github.com/Sm1L3ing/ACSEC/blob/master/Ruijie-RG-UAC •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2020-21639
https://notcve.org/view.php?id=CVE-2020-21639
Ruijie RG-UAC 6000-E50 commit 9071227 was discovered to contain a cross-site scripting (XSS) vulnerability via the rule_name parameter. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload. Se ha detectado que el commit 9071227 de Ruijie RG-UAC 6000-E50 contiene una vulnerabilidad de tipo cross-site scripting (XSS) por medio del parámetro rule_name. Esta vulnerabilidad permite a atacantes ejecutar scripts web o HTML arbitrarios por medio de una carga útil diseñada • https://github.com/Sm1L3ing/ACSEC/blob/master/Ruijie-RG-UAC • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •