- Description
- Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow an attacker to subscribe to partial possible topics in Ruijie MQTT broker, and receive partial messages being sent to and from devices.
- Source
- ics-cert@hq.dhs.gov
- NVD status
- Analyzed
CVSS 4.0
- Type
- Secondary
- Base score
- 8.7
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
CVSS 3.1
- Type
- Primary
- Base score
- 5.3
- Impact score
- 1.4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
- Severity
- MEDIUM
- ics-cert@hq.dhs.gov
- CWE-155
- Hype score
- Not currently trending
CVE Alert: CVE-2024-47791 - https://t.co/WE9xcvdCjU #OSINT #ThreatIntel #CyberSecurity #cve_2024_47791
@RedPacketSec
7 Dec 2024
100 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-47791 Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow an attacker to subscribe to partial possible topics in Ruijie MQTT broker, and receive pa… https://t.co/fMC4yjtaMu
@CVEnew
6 Dec 2024
400 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
[CVE-2024-47791: HIGH] Ruijie Reyee OS versions 2.206.x to 2.320.x vulnerable to partial MQTT message interception by attackers. #cybersecurity #vulnerability#cybersecurity,#vulnerability https://t.co/cbjYJSz4C4 https://t.co/Pko1q8chdh
@CveFindCom
6 Dec 2024
28 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:ruijienetworks:reyee_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0847A16C-8A5D-4016-83E9-6DC80588E105",
"versionEndExcluding": "2.320.0",
"versionStartIncluding": "2.206.0"
}
],
"operator": "OR"
}
]
}
]