CVE-2025-58778
Published: Oct 16, 2025
Modified: Oct 16, 2025
CVSS v3.0
7.2
Description
Multiple versions of RG-EST300 provided by Ruijie Networks provide SSH server functionality. It is not documented in the manual, and enabled in the initial configuration. Anyone with the knowledge of the related credentials can log in to the affected device, leading to information disclosure, altering the system configurations, or causing a denial of service (DoS) condition.
| Vendor | Product | Versions |
|---|---|---|
Ruijie Networks Co., Ltd. | RG-EST300 | affected AP_3.0(1)B2P18_EST300_06210514affected AP_3.0(1)B2P10_EST300_06151523affected AP_3.0(1)B2P10_EST300_05232216affected and AP_3.0(1)B2P10_EST300_05220814 |
Weaknesses (CWE)
CVSS v3.0 Details
CVSS v3.0 Vector
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now