CVE-2025-65363

EUVD-2025-201720
Authenticated append-style command-injection Ruijie APs (AP_RGOS 11.1.x) allows an authenticated web user to execute appended shell expressions as root, enabling file disclosure, device disruption, and potential network pivoting via the command parameter to the web_action.do endpoint.
Command Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 HIGH
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
CISA-ADPADP
7.2 HIGH
NETWORK
LOW
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 24%
Affected Products (NVD)
VendorProductVersion
ruijierg-ap720-l_firmware
11.1.0 ≤
𝑥
≤ 11.1\(9\)B1P21
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://rg-ap720-l.com
http://ruijie.com
https://github.com/tmogg/security-advisories/blob/main/CVE-2025-65363/README.md