VYPR

Unleashed

by Ruckus

CVEs (17)

  • CVE-2019-19838CriJan 23, 2020
    risk 0.66cvss 9.8epss 0.24

    emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=get-platform-depends to admin/_cmdstat.jsp via the uploadFile attribute.

  • CVE-2020-13919CriJul 28, 2020
    risk 0.64cvss 9.8epss 0.03

    emfd/libemf in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to achieve command injection via a crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n, T301s, T310c, T310d,…

  • CVE-2020-13917CriJul 28, 2020
    risk 0.64cvss 9.8epss 0.02

    rkscli in Ruckus Wireless Unleashed through 200.7.10.92 allows a remote attacker to achieve command injection and jailbreak the CLI via a crafted CLI command. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n, T301s,…

  • CVE-2020-13916CriJul 28, 2020
    risk 0.64cvss 9.8epss 0.04

    A stack buffer overflow in webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to execute code via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n,…

  • CVE-2019-19839CriJan 23, 2020
    risk 0.64cvss 9.8epss 0.03

    emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=import-category to admin/_cmdstat.jsp via the uploadFile attribute.

  • CVE-2019-19842CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.05

    emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=spectra-analysis to admin/_cmdstat.jsp via the mac attribute.

  • CVE-2019-19841CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.03

    emfd in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote attackers to execute OS commands via a POST request with the attribute xcmd=packet-capture to admin/_cmdstat.jsp via the mac attribute.

  • CVE-2019-19840CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.04

    A stack-based buffer overflow in zap_parse_args in zap.c in zap in Ruckus Unleashed through 200.7.10.102.64 allows remote code execution via an unauthenticated HTTP request.

  • CVE-2019-19843CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.02

    Incorrect access control in the web interface in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote credential fetch via an unauthenticated HTTP request involving a symlink with /tmp and web/user/wps_tool_cache.

  • CVE-2019-19836CriJan 22, 2020
    risk 0.64cvss 9.8epss 0.04

    AjaxRestrictedCmdStat in zap in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote code execution via a POST request that uses tools/_rcmdstat.jsp to write to a specified filename.

  • CVE-2020-13918HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.02

    Incorrect access control in webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to leak system information (that can be used for a jailbreak) via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500,…

  • CVE-2020-13915HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.02

    Insecure permissions in emfd/libemf in Ruckus Wireless Unleashed through 200.7.10.102.92 allow a remote attacker to overwrite admin credentials via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720,…

  • CVE-2020-13914HigJul 28, 2020
    risk 0.49cvss 7.5epss 0.02

    webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to cause a denial of service (Segmentation fault) to the webserver via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710,…

  • CVE-2019-19835HigJan 23, 2020
    risk 0.49cvss 7.5epss 0.02

    SSRF in AjaxRestrictedCmdStat in zap in Ruckus Wireless Unleashed through 200.7.10.102.64 allows a remote denial of service via the server attribute to the tools/_rcmdstat.jsp URI.

  • CVE-2019-19834HigJan 22, 2020
    risk 0.47cvss 7.2epss 0.02

    Directory Traversal in ruckus_cli2 in Ruckus Wireless Unleashed through 200.7.10.102.64 allows a remote attacker to jailbreak the CLI via enable->debug->script->exec with ../../../bin/sh as the parameter.

  • CVE-2020-13913MedJul 28, 2020
    risk 0.40cvss 6.1epss 0.01

    An XSS issue in emfd in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to execute JavaScript code via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n,…

  • CVE-2019-19837MedJan 23, 2020
    risk 0.35cvss 5.3epss 0.02

    Incorrect access control in the web interface in Ruckus Wireless Unleashed through 200.7.10.102.64 allows remote information disclosure of bin/web.conf via HTTP requests.