cvedb.io
CVE-2024-48874
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2024-12-06T19:15:12.933 · Last modified 2026-06-17T07:58:56.750

Summary

Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could give attackers the ability to force Ruijie's proxy servers to perform any request the attackers choose. Using this, attackers could access internal services used by Ruijie and their internal cloud infrastructure via AWS cloud metadata services.

Affected products

ruijienetworks — reyee_os

Does this affect you?

Add your gear to cvedb and we'll alert you only when ruijienetworks ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.