Lucene search
HistoryDec 07, 2023 - 7:15 a.m.
CVE-2023-49225
cve-2023-49225
cross-site-scripting
ruckus access point
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.0%
A cross-site-scripting vulnerability exists in Ruckus Access Point products (ZoneDirector, SmartZone, and AP Solo). If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is logging in the product. As for the affected products/models/versions, see the information provided by the vendor listed under [References] section or the list under [Product Status] section.
Affected configurations
Node
ruckuswirelessr750Match-
ruckuswirelessr750_firmwareRange≤114.0.0.0.6565
Node
ruckuswirelessr650Match-
ruckuswirelessr650_firmwareRange≤114.0.0.0.6565
Node
ruckuswirelessr730Match-
ruckuswirelessr730_firmwareRange≤114.0.0.0.6565
Node
ruckuswirelesst750Match-
ruckuswirelesst750_firmwareRange≤114.0.0.0.6565
Node
ruckuswirelessr510Match-
ruckuswirelessr510_firmwareRange≤114.0.0.0.6565
Node
ruckuswirelesse510_firmwareRange≤114.0.0.0.6565
ruckuswirelesse510Match-
Node
ruckuswirelessc110_firmwareRange≤114.0.0.0.6565
ruckuswirelessc110Match-
Node
ruckuswirelessr320_firmwareRange≤114.0.0.0.6565
ruckuswirelessr320Match-
Node
ruckuswirelessh510_firmwareRange≤114.0.0.0.6565
ruckuswirelessh510Match-
Node
ruckuswirelessh320_firmwareRange≤114.0.0.0.6565
ruckuswirelessh320Match-
Node
ruckuswirelesst305_firmwareRange≤114.0.0.0.6565
ruckuswirelesst305Match-
Node
ruckuswirelessm510_firmwareRange≤114.0.0.0.6565
ruckuswirelessm510Match-
Node
ruckuswirelessr720_firmwareRange≤114.0.0.0.6565
ruckuswirelessr720Match-
Node
ruckuswirelessr710_firmwareRange≤114.0.0.0.6565
ruckuswirelessr710Match-
Node
ruckuswirelesst710_firmwareRange≤114.0.0.0.6565
ruckuswirelesst710Match-
Node
ruckuswirelesst610_firmwareRange≤114.0.0.0.6565
ruckuswirelesst610Match-
Node
ruckuswirelessr610_firmwareRange≤114.0.0.0.6565
ruckuswirelessr610Match-
Node
ruckuswirelesst310d_firmwareRange≤114.0.0.0.6565
ruckuswirelesst310dMatch-
Node
ruckuswirelesst310s_firmwareRange≤114.0.0.0.6565
ruckuswirelesst310sMatch-
Node
ruckuswirelesst310n_firmwareRange≤114.0.0.0.6565
ruckuswirelesst310nMatch-
Node
ruckuswirelesst310c_firmwareRange≤114.0.0.0.6565
ruckuswirelesst310cMatch-
Node
ruckuswirelesst710s_firmwareRange≤114.0.0.0.6565
ruckuswirelesst710sMatch-
Node
ruckuswirelesst610s_firmwareRange≤114.0.0.0.6565
ruckuswirelesst610sMatch-
Node
ruckuswirelessr550_firmwareRange≤114.0.0.0.5585
ruckuswirelessr550Match-
Node
ruckuswirelessr850_firmwareRange≤114.0.0.0.5585
ruckuswirelessr850Match-
Node
ruckuswirelesst750se_firmwareRange≤114.0.0.0.5585
ruckuswirelesst750seMatch-
Node
ruckuswirelessr310_firmwareRange≤110.0.0.0.2014
ruckuswirelessr310
Node
ruckuswirelessr760_firmwareRange≤118.1.0.0.1274
ruckuswirelessr760
Node
ruckuswirelessr760_firmwareRange≤118.1.0.0.1274
ruckuswirelessr760
Node
ruckuswirelessr560_firmwareRange≤118.1.0.0.1908
ruckuswirelessr560
Node
ruckuswirelessh550_firmwareRange≤116.0.0.0.1506
ruckuswirelessh550
Node
ruckuswirelessh350_firmwareRange≤116.0.0.0.3128
ruckuswirelessh350
Node
ruckuswirelesst350c_firmwareRange≤116.0.0.0.1543
ruckuswirelesst350c
Node
ruckuswirelesst350d_firmwareRange≤116.0.0.0.1543
ruckuswirelesst350d
Node
ruckuswirelesst350se_firmwareRange≤116.0.0.0.3136
ruckuswirelesst350se
Node
ruckuswirelessr350_firmwareRange≤116.0.0.0.1655
ruckuswirelessr350
Node
ruckuswirelesssmartzone_firmwareRange≤6.1.1
ruckuswirelesssmartzoneMatch-
Node
ruckuswirelesszonedirector_firmwareRange≤10.5.1
ruckuswirelesszonedirectorMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ruckuswireless | r750 | - | cpe:2.3:h:ruckuswireless:r750:-:*:*:*:*:*:*:* |
| ruckuswireless | r750_firmware | * | cpe:2.3:o:ruckuswireless:r750_firmware:*:*:*:*:*:*:*:* |
| ruckuswireless | r650 | - | cpe:2.3:h:ruckuswireless:r650:-:*:*:*:*:*:*:* |
| ruckuswireless | r650_firmware | * | cpe:2.3:o:ruckuswireless:r650_firmware:*:*:*:*:*:*:*:* |
| ruckuswireless | r730 | - | cpe:2.3:h:ruckuswireless:r730:-:*:*:*:*:*:*:* |
| ruckuswireless | r730_firmware | * | cpe:2.3:o:ruckuswireless:r730_firmware:*:*:*:*:*:*:*:* |
| ruckuswireless | t750 | - | cpe:2.3:h:ruckuswireless:t750:-:*:*:*:*:*:*:* |
| ruckuswireless | t750_firmware | * | cpe:2.3:o:ruckuswireless:t750_firmware:*:*:*:*:*:*:*:* |
| ruckuswireless | r510 | - | cpe:2.3:h:ruckuswireless:r510:-:*:*:*:*:*:*:* |
| ruckuswireless | r510_firmware | * | cpe:2.3:o:ruckuswireless:r510_firmware:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2023-49225
2023-12-07 06:22:32
jvn
jvn
JVN#45891816: Ruckus Access Point vulnerable to cross-site scripting
2023-12-01 00:00:00
prion
prion
Cross site scripting
2023-12-07 07:15:00
cve
cve
CVE-2023-49225
2023-12-07 07:15:12
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.0%
Related for NVD:CVE-2023-49225