CVE-2025-68459
CVE-2025-68459
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 8.6EPSS 1.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
18 Dec 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
RG - AP180, Indoor Wall Plate Wireless AP AP180 series provided by Ruijie Networks Co., Ltd. contain an OS command injection vulnerability. An arbitrary OS command may be executed on the product by an attacker who logs in to the CLI service.
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
Ruijie Networks Co., Ltd. · AP180-AC V1.xxRuijie Networks Co., Ltd. · AP180-AC V2.xxRuijie Networks Co., Ltd. · AP180-AC V3.xxRuijie Networks Co., Ltd. · AP180(JA) V1.xxRuijie Networks Co., Ltd. · AP180(JA) V2.xxRuijie Networks Co., Ltd. · AP180(JP) V1.xxRuijie Networks Co., Ltd. · AP180-PE V1.xxRuijie Networks Co., Ltd. · AP180-PE V2.xxRuijie Networks Co., Ltd. · AP180-PE V3.xxWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →