CVE-2024-45722
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Dec 6, 2024
Updated: Dec 10, 2024
CWE ID 1391
Summary
CVE-2024-45722: Ruijie Reyee OS versions between 2.206.x and 2.320.x are affected by a vulnerability where weak MQTT credentials are used. An attacker can exploit this issue by calculating valid login credentials, granting unauthorized access to affected systems. This could potentially lead to significant security risks, including unauthorized system control and data breaches. Organizations using these versions of Ruijie Reyee OS are strongly advised to apply the necessary patches or updates to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Ruijie Networks