9.8

CVE-2023-25717

Warning
Exploit

Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring.

Data is provided by the National Vulnerability Database (NVD)
RuckuswirelessRuckus Wireless Admin Version <= 10.4
   RuckuswirelessE510 Version-
   RuckuswirelessH320 Version-
   RuckuswirelessH350 Version-
   RuckuswirelessH510 Version-
   RuckuswirelessH550 Version-
   RuckuswirelessM510 Version-
   RuckuswirelessR310 Version-
   RuckuswirelessR320 Version-
   RuckuswirelessR350 Version-
   RuckuswirelessR510 Version-
   RuckuswirelessR550 Version-
   RuckuswirelessR610 Version-
   RuckuswirelessR650 Version-
   RuckuswirelessR710 Version-
   RuckuswirelessR720 Version-
   RuckuswirelessR730 Version-
   RuckuswirelessR750 Version-
   RuckuswirelessR760 Version-
   RuckuswirelessR850 Version-
   RuckuswirelessSz-144 Version-
   RuckuswirelessSz100 Version-
   RuckuswirelessSz300 Version-
   RuckuswirelessT310c Version-
   RuckuswirelessT310d Version-
   RuckuswirelessT310n Version-
   RuckuswirelessT310s Version-
   RuckuswirelessT350c Version-
   RuckuswirelessT350d Version-
   RuckuswirelessT350se Version-
   RuckuswirelessT610 Version-
   RuckuswirelessT710 Version-
   RuckuswirelessT710s Version-
   RuckuswirelessT750 Version-
   RuckuswirelessT750se Version-
   RuckuswirelessT811-cm Version-
RuckuswirelessSmartzone Ap Version < 6.1.0.0.9240
   RuckuswirelessE510 Version-
   RuckuswirelessH320 Version-
   RuckuswirelessH350 Version-
   RuckuswirelessH510 Version-
   RuckuswirelessH550 Version-
   RuckuswirelessM510 Version-
   RuckuswirelessR310 Version-
   RuckuswirelessR320 Version-
   RuckuswirelessR350 Version-
   RuckuswirelessR510 Version-
   RuckuswirelessR550 Version-
   RuckuswirelessR610 Version-
   RuckuswirelessR650 Version-
   RuckuswirelessR710 Version-
   RuckuswirelessR720 Version-
   RuckuswirelessR730 Version-
   RuckuswirelessR750 Version-
   RuckuswirelessR760 Version-
   RuckuswirelessR850 Version-
   RuckuswirelessSz-144 Version-
   RuckuswirelessSz100 Version-
   RuckuswirelessSz300 Version-
   RuckuswirelessT310c Version-
   RuckuswirelessT310d Version-
   RuckuswirelessT310n Version-
   RuckuswirelessT310s Version-
   RuckuswirelessT350c Version-
   RuckuswirelessT350d Version-
   RuckuswirelessT350se Version-
   RuckuswirelessT610 Version-
   RuckuswirelessT710 Version-
   RuckuswirelessT710s Version-
   RuckuswirelessT750 Version-
   RuckuswirelessT750se Version-
   RuckuswirelessT811-cm Version-
RuckuswirelessRuckus Wireless Admin Version <= 10.4
   RuckuswirelessE510 Version-
   RuckuswirelessH320 Version-
   RuckuswirelessH510 Version-
   RuckuswirelessM510 Version-
   RuckuswirelessR310 Version-
   RuckuswirelessR320 Version-
   RuckuswirelessR500 Version-
   RuckuswirelessR510 Version-
   RuckuswirelessR550 Version-
   RuckuswirelessR600 Version-
   RuckuswirelessR610 Version-
   RuckuswirelessR650 Version-
   RuckuswirelessR710 Version-
   RuckuswirelessR720 Version-
   RuckuswirelessR730 Version-
   RuckuswirelessR750 Version-
   RuckuswirelessR850 Version-
   RuckuswirelessT300 Version-
   RuckuswirelessT301n Version-
   RuckuswirelessT301s Version-
   RuckuswirelessT310c Version-
   RuckuswirelessT310d Version-
   RuckuswirelessT310n Version-
   RuckuswirelessT310s Version-
   RuckuswirelessT504 Version-
   RuckuswirelessT610 Version-
   RuckuswirelessT710 Version-
   RuckuswirelessT710s Version-
   RuckuswirelessT750 Version-
   RuckuswirelessT750se Version-
   RuckuswirelessT811-cm Version-
RuckuswirelessSmartzone Ap Version < 5.2.2.0.2064
   RuckuswirelessE510 Version-
   RuckuswirelessH320 Version-
   RuckuswirelessH510 Version-
   RuckuswirelessM510 Version-
   RuckuswirelessR310 Version-
   RuckuswirelessR320 Version-
   RuckuswirelessR500 Version-
   RuckuswirelessR510 Version-
   RuckuswirelessR550 Version-
   RuckuswirelessR600 Version-
   RuckuswirelessR610 Version-
   RuckuswirelessR650 Version-
   RuckuswirelessR710 Version-
   RuckuswirelessR720 Version-
   RuckuswirelessR730 Version-
   RuckuswirelessR750 Version-
   RuckuswirelessR850 Version-
   RuckuswirelessT300 Version-
   RuckuswirelessT301n Version-
   RuckuswirelessT301s Version-
   RuckuswirelessT310c Version-
   RuckuswirelessT310d Version-
   RuckuswirelessT310n Version-
   RuckuswirelessT310s Version-
   RuckuswirelessT504 Version-
   RuckuswirelessT610 Version-
   RuckuswirelessT710 Version-
   RuckuswirelessT710s Version-
   RuckuswirelessT750 Version-
   RuckuswirelessT750se Version-
   RuckuswirelessT811-cm Version-
RuckuswirelessRuckus Wireless Admin Version <= 10.4
   RuckuswirelessH500 Version-
   RuckuswirelessR300 Version-
   RuckuswirelessR700 Version-
RuckuswirelessSmartzone Ap Version < 3.6.2.0.795
   RuckuswirelessH500 Version-
   RuckuswirelessR300 Version-
   RuckuswirelessR700 Version-
RuckuswirelessRuckus Wireless Admin Version <= 10.4
   RuckuswirelessR560 Version-
RuckuswirelessSmartzone Ap Version < 6.1.1.0.1274
   RuckuswirelessR560 Version-
RuckuswirelessRuckus Wireless Admin Version <= 10.4
   RuckuswirelessSz-144 Version-
   RuckuswirelessSz300 Version-
CommscopeRuckus Smartzone Firmware Version < 5.2.1.3
   RuckuswirelessSz-144 Version-
   RuckuswirelessSz300 Version-
RuckuswirelessRuckus Wireless Admin Version <= 10.4
   RuckuswirelessSz-144 Version-
   RuckuswirelessSz100 Version-
   RuckuswirelessSz300 Version-
CommscopeRuckus Smartzone Firmware Version6.1.0.0.935
   RuckuswirelessSz-144 Version-
   RuckuswirelessSz100 Version-
   RuckuswirelessSz300 Version-
RuckuswirelessRuckus Wireless Admin Version <= 10.4
   RuckuswirelessM510-jp Version-
   RuckuswirelessP300 Version-
   RuckuswirelessQ410 Version-
   RuckuswirelessQ710 Version-
   RuckuswirelessQ910 Version-
   RuckuswirelessZd1000 Version-
   RuckuswirelessZd1100 Version-
   RuckuswirelessZd1200 Version-
   RuckuswirelessZd3000 Version-
   RuckuswirelessZd5000 Version-
RuckuswirelessRuckus Wireless Admin Version <= 10.4
   RuckuswirelessSz-144-federal Version-
   RuckuswirelessSz300-federal Version-
CommscopeRuckus Smartzone Firmware Version < 5.2.1.3.1695
   RuckuswirelessSz-144-federal Version-
   RuckuswirelessSz300-federal Version-

12.05.2023: CISA Known Exploited Vulnerabilities (KEV) Catalog

Multiple Ruckus Wireless Products CSRF and RCE Vulnerability

Vulnerability

Ruckus Wireless Access Point (AP) software contains an unspecified vulnerability in the web services component. If the web services component is enabled on the AP, an attacker can perform cross-site request forgery (CSRF) or remote code execution (RCE). This vulnerability impacts Ruckus ZoneDirector, SmartZone, and Solo APs.

Description

Apply updates per vendor instructions or disconnect product if it is end-of-life.

Required actions
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 94.23% 0.999
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.8 3.9 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE-94 Improper Control of Generation of Code ('Code Injection')

The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.