FlagThis

Security researchers have uncovered significant vulnerabilities in Ruijie Networks' cloud management platform, potentially exposing 50,000 devices to remote attacks. These flaws affect both the Reyee platform and Reyee OS network devices, allowing malicious actors to execute code and take control of the affected systems. A particularly concerning attack method dubbed "Open Sesame" enables hackers to gain unauthorized access to networks via nearby access points, by exploiting weaknesses in the device serial numbers and MQTT authentication.

The research revealed a total of ten vulnerabilities, with three classified as critical. These include a weak password recovery mechanism, a server-side request forgery vulnerability, and a dangerous function allowing the execution of arbitrary operating system commands through malicious MQTT messages. Exploitation of these flaws could result in large-scale denial-of-service attacks, false data injection, and complete remote control of cloud-connected devices.

ImgSrc: ciso2ciso.com

References:

• CISO2CISO.COM & CYBER SECURITY GROUP - Ruijie Networks’ Cloud Platform Flaws Could Expose 50,000 Devices to Remote Attacks – Source:thehackernews.com - 5d
• @jos1264 - Ruijie Networks’ Cloud Platform Flaws Could Expose 50,000 Devices to Remote Attacks – Source:thehackernews.com - 5d
• The Hacker News - Ruijie Networks' Cloud Platform Flaws Could Expose 50,000 Devices to Remote Attacks - 5d
• ciso2ciso.com - Ruijie Networks’ Cloud Platform Flaws Could Expose 50,000 Devices to Remote Attacks – Source:thehackernews.com - 4d
• CISO2CISO.COM & CYBER SECURITY GROUP - CISO2CISO report on Ruijie Networks’ Cloud Platform Flaws - 3d

Classification:

• HashTags: Ruijie Vulnerability Cybersecurity
• Company: Ruijie Networks
• Target: Ruijie Reyee users
• Product: Reyee
• Feature: Remote Control
• Type: Vulnerability
• Severity: Major