Incorrect access control in the web interface in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote credential fetch via an unauthenticated HTTP request involving a symlink with /tmp and web/user/wps_tool_cache.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HRuckuswireless C110
HWRuckuswirelesswszystkie wersjeRuckuswireless E510
HWRuckuswirelesswszystkie wersjeRuckuswireless H320
HWRuckuswirelesswszystkie wersjeRuckuswireless H510
HWRuckuswirelesswszystkie wersjeRuckuswireless M510
HWRuckuswirelesswszystkie wersjeRuckuswireless R310
HWRuckuswirelesswszystkie wersjeRuckuswireless R320
HWRuckuswirelesswszystkie wersjeRuckuswireless R510
HWRuckuswirelesswszystkie wersjeRuckuswireless R610
HWRuckuswirelesswszystkie wersjeRuckuswireless R710
HWRuckuswirelesswszystkie wersjeRuckuswireless R720
HWRuckuswirelesswszystkie wersjeRuckuswireless T310
HWRuckuswirelesswszystkie wersjeRuckuswireless T610
HWRuckuswirelesswszystkie wersjeRuckuswireless T710
HWRuckuswirelesswszystkie wersjeRuckuswireless Unleashed
OSRuckuswireless< 200.7.10.202.94Ruckuswireless Zonedirector 1200
HWRuckuswirelesswszystkie wersjeRuckuswireless Zonedirector 1200 Firmware
OSRuckuswireless9.12.0 – 9.12.3.0.136 (bez)9.13.0 – 10.0.1.0.90 (bez)< 9.10.2.0.8410.2.0 – 10.2.1.0.147 (bez)10.3.0 – 10.3.1.0.21 (bez)10.1.0 – 10.1.2.0.275 (bez)
Powiązane podatności
Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as de...
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruc...
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruc...
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruc...
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruc...