AI Score
Confidence
High
EPSS
Percentile
52.8%
An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. The Web Application allows Arbitrary Read/Write actions by authenticated users. The API allows an HTTP POST of arbitrary content into any file on the filesystem as root.
seclists.org/fulldisclosure/2021/May/77
korelogic.com/advisories.html