CVE-2026-12197— Ruijie EG105G-P JSON-RPC Diagnose Endpoint diagnose nslookup command injection
Possible ATT&CK Techniques 1AI
T1190 · Exploit Public-Facing ApplicationGet alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-12197
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Ruijie EG105G-P JSON-RPC Diagnose Endpoint diagnose nslookup command injection
Source: NVD (National Vulnerability Database)
Vulnerability Description
A security flaw has been discovered in Ruijie EG105G-P 2.340. The impacted element is the function nslookup of the file /cgi-bin/luci/api/diagnose of the component JSON-RPC Diagnose Endpoint. Performing a manipulation of the argument params.target results in command injection. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
在命令中使用的特殊元素转义处理不恰当(命令注入)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Ruijie eg105g-p 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
eg105g-p是中国Ruijie公司的一款企业级路由器。 Ruijie EG105G-P 2.340版本存在安全漏洞,该漏洞源于对JSON-RPC Diagnose Endpoint组件中/cgi-bin/luci/api/diagnose文件的nslookup函数中的params.target参数操作不当,导致命令注入攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2026-12197
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-12197
请登录查看更多情报信息。
Other References for CVE-2026-12197 (1)
IV. Related Vulnerabilities
Same vendor: Ruijie
- CVE-2023-53881
ReyeeOS 1.204.1614 Man-in-the-Middle Remote Code Execution v - CVE-2025-11141
Ruijie NBR2100G-E branch_passw.php listAction os command inj - CVE-2025-10774
Ruijie 6000-E10 sub_commit.php os command injection - CVE-2025-9424
Ruijie WS7204-A branch_import.php os command injection - CVE-2025-8763
Ruijie EG306MG strongSwan strongswan.conf missing encryption
Same weakness: CWE-77
- CVE-2024-24909
Dell OpenManage Integration with Microsoft Windows Admin Cen - CVE-2026-12223
Yealink SIP-T46U Web FastCGI Service tftpuploadiperf mod_web - CVE-2026-12219
Yealink SIP-T46U Web FastCGI Service start mod_diagnose.Comm - CVE-2026-12187
GL.iNet GL-MT3000 Online Firmware Upgrade one_click_upgrade - CVE-2026-12186
GL.iNet GL-MT3000 Tor Proxy Service Configuration tor replac
V. Comments for CVE-2026-12197
No comments yet