Authenticated Root Command Injection in Ruckus Networks Solo APs and SZ managed APs

Authenticated Root Command Injection in Ruckus Networks Solo APs and SZ managed APs

CVE-2017-6230 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

Ruckus Networks Solo APs firmware releases R110.x or before and Ruckus Networks SZ managed APs firmware releases R5.x or before contain authenticated Root Command Injection in the web-GUI that could allow authenticated valid users to execute privileged commands on the respective systems.

Learn more about our Web App Pen Testing.