Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring.
Attack Vector Network
Attack Complexity Low
Privileges Required None
Scope Unchanged
Confidentiality Impact High
Integrity Impact High
Availability Impact High
User Interaction None
No CVSS v3.0
No CVSS v2
Vendors | Products |
---|---|
Ruckuswireless |
|
Configuration 1 [-]
AND |
|
Configuration 2 [-]
AND |
|
Configuration 3 [-]
AND |
|
Configuration 4 [-]
AND |
|
Configuration 5 [-]
AND |
|
Configuration 6 [-]
AND |
|
Configuration 7 [-]
AND |
|
Configuration 8 [-]
AND |
|
References
Link | Resource |
---|---|
https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthenticated-remote-code-execution-csrf-ssrf/ | Exploit Third Party Advisory |
https://support.ruckuswireless.com/security_bulletins/315 | Patch Product Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-02-13T00:00:00
Updated: 2023-02-13T00:00:00
Reserved: 2023-02-13T00:00:00
Link: CVE-2023-25717
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-02-13T20:15:10.973
Modified: 2023-02-23T16:26:54.490
Link: CVE-2023-25717
JSON object: View
Redhat Information
No data.
CWE