Ruijie RG-EW1200G PRO OS Command Injection Vulnerability

An OS command injection vulnerability has been identified in the Ruijie RG-EW1200G PRO access point model, specifically in versions V1.00, V2.00, V3.00, and V4.00. This vulnerability allows authenticated remote attackers to execute arbitrary commands on the device by sending specially crafted POST requests to the 'module_set' endpoint in the file '/usr/local/lua/dev_sta/nbr_cwmp.lua'.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the affected device.

Reproduction

To reproduce this vulnerability, send a POST request to the 'module_set' endpoint in '/usr/local/lua/dev_sta/nbr_cwmp.lua' with a payload that includes the desired command to be executed. This can be done using a tool like curl or Postman, ensuring that the request is authenticated.