CVE-2026-14736
Gravedad CVSS v4.0:
MEDIA
Tipo:
CWE-284
Control de acceso incorrecto
Fecha de publicación:
05/07/2026
Última modificación:
05/07/2026
Descripción
*** Pendiente de traducción *** A vulnerability was found in Ruijie RG-UAC up to 1.0-R1.8.2.p5. The impacted element is an unknown function of the file user_auth_commit.php. Performing a manipulation of the argument upload_image results in unrestricted upload. The attack is possible to be carried out remotely. The exploit has been made public and could be used.
Impacto
Puntuación base 4.0
5.50
Gravedad 4.0
MEDIA
Puntuación base 3.x
7.30
Gravedad 3.x
ALTA
Puntuación base 2.0
7.50
Gravedad 2.0
ALTA



