fkie_cve-2023-25717
Vulnerability from fkie_nvd
Published
2023-02-13 20:15
Modified
2025-08-22 21:09
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| cve@mitre.org | https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthenticated-remote-code-execution-csrf-ssrf/ | Exploit, Third Party Advisory | |
| cve@mitre.org | https://support.ruckuswireless.com/security_bulletins/315 | Patch, Product, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthenticated-remote-code-execution-csrf-ssrf/ | Exploit, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://support.ruckuswireless.com/security_bulletins/315 | Patch, Product, Vendor Advisory |
Impacted products
{
"cisaActionDue": "2023-06-02",
"cisaExploitAdd": "2023-05-12",
"cisaRequiredAction": "Apply updates per vendor instructions or disconnect product if it is end-of-life.",
"cisaVulnerabilityName": "Multiple Ruckus Wireless Products CSRF and RCE Vulnerability",
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ruckuswireless:ruckus_wireless_admin:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7580FF26-730D-4029-A33B-3A3105E5BC72",
"versionEndIncluding": "10.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:ruckuswireless:smartzone_ap:*:*:*:*:*:*:*:*",
"matchCriteriaId": "ED4CD2B3-C3CE-437F-A01C-5A50B900FC4D",
"versionEndExcluding": "6.1.0.0.9240",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ruckuswireless:e510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FBF5C92C-C889-4732-BB00-E6D55613E410",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:h320:-:*:*:*:*:*:*:*",
"matchCriteriaId": "282C3A1D-711C-4415-B9BE-A9B518204AEB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:h350:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D19E1647-DFDD-4AE9-8118-B6E27796F158",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:h510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CB1FAB48-786A-4FB3-AB6D-3118E94E68C7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:h550:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3AECE922-479C-4C3E-9905-1C742DCE9769",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:m510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D4AE7200-4090-4B81-A22F-B8553A014D21",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r310:-:*:*:*:*:*:*:*",
"matchCriteriaId": "40D3129E-4C02-484F-96B6-59D76F787D21",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r320:-:*:*:*:*:*:*:*",
"matchCriteriaId": "93CE3224-85D2-4039-8F24-BB503DFD42C2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r350:-:*:*:*:*:*:*:*",
"matchCriteriaId": "728B95F9-BD5B-4C0B-ADBD-0B30AAC868EC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "80B2E8CC-EACE-4A80-9EB1-DADAB8034415",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r550:-:*:*:*:*:*:*:*",
"matchCriteriaId": "215024F9-C68E-4919-9FD5-215CF900A830",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r610:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4244947C-538E-4B83-B4F4-3DD4F3C22E83",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r650:-:*:*:*:*:*:*:*",
"matchCriteriaId": "951BDA12-0294-472A-9292-F60AC6D4292B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r710:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E95884E9-C6AF-4106-A178-9274AD27EF65",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r720:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DDFDAF0A-9F5D-4E34-805E-6F27103AAA32",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r730:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BB28A5E0-6F42-4133-B1D3-1D0116079094",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r750:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BA49CB45-1196-4AD7-8AB6-C5593BBF015F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r760:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C50256D2-E89C-4992-B296-7F686C4A0E66",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r850:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3A244DE5-A9B3-45BE-8AD1-154546F4F1F4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:sz-144:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0CA45AAC-D228-4F8B-AAD8-A41395C79DD4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:sz100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB6E5537-CC32-46A3-BCA3-52B011E13564",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:sz300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4A7CB834-555F-4259-AD12-DB56F42CA907",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t310c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BFB69C4E-2B4F-4F61-8A65-9BA0354F33E3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t310d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C2D3E8C6-4676-4B74-A252-132A26670C64",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t310n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2ED4C9B4-7F70-4059-8592-FD3F034160C3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t310s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "72378D4B-ADB5-4DE5-BB92-1778BDFD61FC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t350c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0E561E73-06B4-49E3-A24C-CCDFA0D278EE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t350d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "271E8C2A-5AD8-47B7-B6C5-D996FD135412",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t350se:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A1151656-21F9-442F-93AF-3E12B497CEF1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t610:-:*:*:*:*:*:*:*",
"matchCriteriaId": "210D55AB-9305-4D0B-B9F0-47889D37373B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t710:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A40B9489-D999-4355-953E-36A7F8DEF299",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t710s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4CFF0772-D853-4781-B326-E3BDEAC78EE0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t750:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C15AA25-82B2-4C02-8361-E8F6179B525A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t750se:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E1DE3AD-CA13-44CE-ACF1-3DE2D6C691BC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t811-cm:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F0680FEA-592F-4610-85D3-D52335906B13",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ruckuswireless:ruckus_wireless_admin:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7580FF26-730D-4029-A33B-3A3105E5BC72",
"versionEndIncluding": "10.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:ruckuswireless:smartzone_ap:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E19ED3EC-4946-4CB1-9227-FC0B500488B9",
"versionEndExcluding": "5.2.2.0.2064",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ruckuswireless:e510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "FBF5C92C-C889-4732-BB00-E6D55613E410",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:h320:-:*:*:*:*:*:*:*",
"matchCriteriaId": "282C3A1D-711C-4415-B9BE-A9B518204AEB",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:h510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CB1FAB48-786A-4FB3-AB6D-3118E94E68C7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:m510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D4AE7200-4090-4B81-A22F-B8553A014D21",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r310:-:*:*:*:*:*:*:*",
"matchCriteriaId": "40D3129E-4C02-484F-96B6-59D76F787D21",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r320:-:*:*:*:*:*:*:*",
"matchCriteriaId": "93CE3224-85D2-4039-8F24-BB503DFD42C2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9BBDBE9C-BE4B-4ED6-AF62-8FE484C519E2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r510:-:*:*:*:*:*:*:*",
"matchCriteriaId": "80B2E8CC-EACE-4A80-9EB1-DADAB8034415",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r550:-:*:*:*:*:*:*:*",
"matchCriteriaId": "215024F9-C68E-4919-9FD5-215CF900A830",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r600:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5421B1D7-E630-4BDA-BA34-7DD8D0738DF4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r610:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4244947C-538E-4B83-B4F4-3DD4F3C22E83",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r650:-:*:*:*:*:*:*:*",
"matchCriteriaId": "951BDA12-0294-472A-9292-F60AC6D4292B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r710:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E95884E9-C6AF-4106-A178-9274AD27EF65",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r720:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DDFDAF0A-9F5D-4E34-805E-6F27103AAA32",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r730:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BB28A5E0-6F42-4133-B1D3-1D0116079094",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r750:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BA49CB45-1196-4AD7-8AB6-C5593BBF015F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r850:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3A244DE5-A9B3-45BE-8AD1-154546F4F1F4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0511674E-59A6-427C-A265-B277D84DE301",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t301n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EBB7A43E-F5F1-465A-841F-05214EDA6833",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t301s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "68C4D9AC-5B1C-4066-8216-3F7127C3CC64",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t310c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BFB69C4E-2B4F-4F61-8A65-9BA0354F33E3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t310d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C2D3E8C6-4676-4B74-A252-132A26670C64",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t310n:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2ED4C9B4-7F70-4059-8592-FD3F034160C3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t310s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "72378D4B-ADB5-4DE5-BB92-1778BDFD61FC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t504:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0EB7F76C-637E-4194-B7CD-36C0EB5C84D1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t610:-:*:*:*:*:*:*:*",
"matchCriteriaId": "210D55AB-9305-4D0B-B9F0-47889D37373B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t710:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A40B9489-D999-4355-953E-36A7F8DEF299",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t710s:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4CFF0772-D853-4781-B326-E3BDEAC78EE0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t750:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5C15AA25-82B2-4C02-8361-E8F6179B525A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t750se:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9E1DE3AD-CA13-44CE-ACF1-3DE2D6C691BC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t811-cm:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F0680FEA-592F-4610-85D3-D52335906B13",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ruckuswireless:ruckus_wireless_admin:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7580FF26-730D-4029-A33B-3A3105E5BC72",
"versionEndIncluding": "10.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:ruckuswireless:smartzone_ap:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D8EFC8C1-5D6B-44AB-919A-FD7365E666EA",
"versionEndExcluding": "3.6.2.0.795",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ruckuswireless:h500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DBE5491D-89A5-4690-8374-0CD27852CCB2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C7FDEC42-0D72-4841-B0FE-B0B0B00B6557",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:r700:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7549541B-0F1A-45F8-8E5A-8034B00C2D2F",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ruckuswireless:ruckus_wireless_admin:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7580FF26-730D-4029-A33B-3A3105E5BC72",
"versionEndIncluding": "10.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:ruckuswireless:smartzone_ap:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B3679017-4730-49AF-8CE7-35B82F504EA5",
"versionEndExcluding": "6.1.1.0.1274",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ruckuswireless:r560:-:*:*:*:*:*:*:*",
"matchCriteriaId": "AADED848-CAF5-4EF6-BAC6-6BE35CCE7815",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ruckuswireless:ruckus_wireless_admin:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7580FF26-730D-4029-A33B-3A3105E5BC72",
"versionEndIncluding": "10.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:commscope:ruckus_smartzone_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "3DC1AFF4-766D-4DFF-B7A0-39EFE686F33B",
"versionEndExcluding": "5.2.1.3",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ruckuswireless:sz-144:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0CA45AAC-D228-4F8B-AAD8-A41395C79DD4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:sz300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4A7CB834-555F-4259-AD12-DB56F42CA907",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ruckuswireless:ruckus_wireless_admin:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7580FF26-730D-4029-A33B-3A3105E5BC72",
"versionEndIncluding": "10.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:commscope:ruckus_smartzone_firmware:6.1.0.0.935:*:*:*:*:*:*:*",
"matchCriteriaId": "98787AFD-705A-4ECA-A735-1412ED55B71C",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ruckuswireless:sz-144:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0CA45AAC-D228-4F8B-AAD8-A41395C79DD4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:sz100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB6E5537-CC32-46A3-BCA3-52B011E13564",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:sz300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4A7CB834-555F-4259-AD12-DB56F42CA907",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ruckuswireless:ruckus_wireless_admin:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7580FF26-730D-4029-A33B-3A3105E5BC72",
"versionEndIncluding": "10.4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ruckuswireless:m510-jp:-:*:*:*:*:*:*:*",
"matchCriteriaId": "007DE148-E501-4A35-8F10-ACD28FF2819B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:p300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "12E3F2DA-3A4B-421A-ACE0-A764B9B57FF9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:q410:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EB66E1A9-D6B5-455F-B6C0-FD2EF45CF509",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:q710:-:*:*:*:*:*:*:*",
"matchCriteriaId": "54D44A0E-66C0-4522-90AC-16F7D5738D8F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:q910:-:*:*:*:*:*:*:*",
"matchCriteriaId": "80C949D8-D53C-4B5B-A851-51FAFAB0011D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:t811-cm\\(non-spf\\):-:*:*:*:*:*:*:*",
"matchCriteriaId": "8EE9892F-8F72-4D92-B7A2-4B4B41AB8729",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:zd1000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "86341154-62AA-43A3-9B65-3B95873317C6",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:zd1100:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1FE17AF8-0965-4D9D-A1A3-40976BDF10C1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:zd1200:-:*:*:*:*:*:*:*",
"matchCriteriaId": "763E2D39-085A-4E8B-BBC1-B0567666FF5C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:zd3000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E149CEA6-5EF5-4CD6-969F-D5DD33D04744",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:zd5000:-:*:*:*:*:*:*:*",
"matchCriteriaId": "640C64BD-EBD1-43D7-AEB9-A51E2069BC4C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ruckuswireless:ruckus_wireless_admin:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7580FF26-730D-4029-A33B-3A3105E5BC72",
"versionEndIncluding": "10.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:commscope:ruckus_smartzone_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E2D11729-5815-46AC-A2B6-E1570FDBED8E",
"versionEndExcluding": "5.2.1.3.1695",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:ruckuswireless:sz-144-federal:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0C68AA80-C987-4B00-AB39-4D14910EB961",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:ruckuswireless:sz300-federal:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3DEAC3DF-557E-4070-A23E-524A4A3B9226",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin\u0026password=password$(curl substring."
},
{
"lang": "es",
"value": "Ruckus Wireless Admin hasta la versi\u00f3n 10.4 permite la ejecuci\u00f3n remota de c\u00f3digo a trav\u00e9s de una solicitud HTTP GET no autenticada, como lo demuestra /forms/doLogin?login_username=admin\u0026amp;password=password$(curl substring."
}
],
"id": "CVE-2023-25717",
"lastModified": "2025-08-22T21:09:15.577",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2023-02-13T20:15:10.973",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthenticated-remote-code-execution-csrf-ssrf/"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Product",
"Vendor Advisory"
],
"url": "https://support.ruckuswireless.com/security_bulletins/315"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthenticated-remote-code-execution-csrf-ssrf/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Product",
"Vendor Advisory"
],
"url": "https://support.ruckuswireless.com/security_bulletins/315"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Analyzed",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-94"
}
],
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…