CVE-2024-47146 Ruijie CVE debrief

Who should care

Organizations deploying Ruijie Reyee OS wireless access points or routers in industrial, enterprise, or OT environments where device inventory information should remain confidential from nearby adversaries.

Technical summary

Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x transmit device serial numbers in raw Wi-Fi signals that can be captured by attackers with physical proximity. The attack requires adjacent positioning and raw signal sniffing capability, with high attack complexity. Confidentiality impact is limited to low-information disclosure (serial number only). The vendor has implemented cloud-based fixes with no end-user action required. CVSS 3.1: 3.1 (AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).

Defensive priority

low

Recommended defensive actions

• Verify Reyee OS devices are running version 2.320.x or later, or confirm cloud-based mitigation is active per vendor guidance
• Monitor for unauthorized physical proximity to wireless infrastructure
• Apply standard wireless security hardening: disable unnecessary SSID broadcasts, implement WPA3-Enterprise where supported, and segment IoT/OT wireless networks
• Review CISA ICS recommended practices for industrial control system wireless deployments

Evidence notes

CISA CSAF advisory ICSA-24-338-01 (Update A) published 2024-12-03, modified 2024-12-10. CVSS 3.1 score 3.1 (LOW). Vendor reports cloud-based remediation deployed.

Official resources