Commscope

Ruckus Zoneflex R500 Firmware

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2020-7983

Exploit
  • EPSS 0.15%
  • Published 05.05.2020 18:15:13
  • Last modified 21.11.2024 05:38:08

A CSRF issue in login.asp on Ruckus R500 3.4.2.0.384 devices allows remote attackers to access the panel or conduct SSRF attacks.

6.1

CVE-2020-8033

Exploit
  • EPSS 0.24%
  • Published 05.05.2020 18:15:13
  • Last modified 21.11.2024 05:38:15

Ruckus R500 3.4.2.0.384 devices allow XSS via the index.asp Device Name field.

8.8

CVE-2020-8830

Exploit
  • EPSS 0.13%
  • Published 05.05.2020 18:15:13
  • Last modified 21.11.2024 05:39:31

CSRF in login.asp on Ruckus devices allows an attacker to access the panel, and use SSRF to perform scraping or other analysis via the SUBCA-1 field on the Wireless Admin screen.