CVE-2024-46874 [CRITICAL] :

Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow MQTT clients connecting with device credentials to send messages to some topics. Attackers with device credentials could issue commands to other devices on behalf of Ruijie's cloud.

ThreatABLE

cve
feed
news

Last 3 days of cybersecurity industry content aggregated for your analysts. ThreatABLE provides a vendor-agnostic roll-up of cyber threat intelligence to employees of organizations of any size. We aim to provide everyone from analysts to CISOs a one-stop-shop to sift through the gargantuan amounts of data that comes flooding into the industry every day.

Visit Website

Listed: Fri Oct 11 2024