CVE-2023-25717

high-risk

Published 2023-02-13

Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring.

Do I need to act?

94.2% chance of exploitation in next 30 days

EPSS score — higher than 6% of all CVEs

CISA KEV: actively exploited in the wild

On the Known Exploited Vulnerabilities catalog — federal agencies must patch

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (4)

Ruckus Wireless Admin

Smartzone Ap

Ruckus Smartzone Firmware

Affected Vendors

Ruckuswireless Commscope

References (5)

Exploit https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthent...

Patch https://support.ruckuswireless.com/security_bulletins/315

Exploit https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthent...

Patch https://support.ruckuswireless.com/security_bulletins/315

US Government Resource https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-...

/ 100

high-risk

Severity 32/34 · Critical

Exploitability 27/34 · High

Exposure 10/34 · Low