CVE-2020-7234 - Ruckus ZoneFlex R310 104.0.0.0.1347 devices allow Stored XSS via the SSID field on the Configuration

CVE-2020-7234

Summary

Ruckus ZoneFlex R310 104.0.0.0.1347 devices allow Stored XSS via the SSID field on the Configuration > Radio 2.4G > Wireless X screen (after a successful login to the super account).

References

https://sku11army.blogspot.com/2020/01/ruckus-wireless-authenticated-stored.html

Vulnerable Configurations

CVSS

Base:	5.0
Impact:
Exploitability:

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

19-01-2020 - 21:15

Published

19-01-2020 - 21:15

Last modified

21-01-2020 - 13:19