CVE-2024-42494

Summary

Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x contains a a feature that could enable sub accounts or attackers to view and exfiltrate sensitive information from all cloud accounts registered to Ruijie's services

Affected Software

VendorProductVersion RangeStatus
RuijieReyee OS2.206.x < 2.320.xaffected

Weaknesses

  • CWE-359: CWE-359

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References