Lucene search
K

PT-2025-28953 · Undefined · Undefined

🗓️ 09 Jul 2025 00:00:00Reported by Positive TechnologiesType 
ptsecurity
 ptsecurity
🔗 dbugs.ptsecurity.com👁 8 Views

Ruckus Wireless Virtual SmartZone and Network Director have critical vulnerabilities allowing unauthorized access.

Related
Refs
ReporterTitlePublishedViews
Family
BDU FSTEC
The vulnerability of the CloudACMunualUpdate() function in the microprogrammed software routers of TOTOLINK T10, TOTOLINK A3100R, TOTOLINK A950RG, TOTOLINK A800R, TOTOLINK N600R, TOTOLINK A3000RU, and TOTOLINK A810R allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
23 May 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Ruckus Virtual SmartZone wireless network controller’s microprogramming software, related to the use of the default cryptographic key, allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.
9 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of the software for centralized control of the Ruckus Network Director network infrastructure lies in the use of rigidly encrypted user credentials. This allows a malicious individual to elevate their privileges and gain access to the RND server.
9 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of Ruckus Virtual SmartZone’s microprogrammed software controllers, related to authentication procedures that lack sufficient safeguards, allows attackers to circumvent existing security restrictions.
9 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of the software for centralized control of the Ruckus Network Director network infrastructure, which stems from the use of strictly encrypted user credentials, allows a intruder to gain unauthorized access to confidential information.
9 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of Ruckus Virtual SmartZone wireless network controller’s microprogramming software, related to the failure to implement measures to neutralize special elements, allows a intruder to execute arbitrary code.
9 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of Ruckus Virtual SmartZone’s microprogrammed software controllers, related to the lack of measures taken to clean data at the control level, allows a intruder to execute arbitrary code.
9 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of Ruckus Virtual SmartZone’s microprogrammed software controllers, related to bypassing the relative path, allows a intruder to load arbitrary files and gain unauthorized access to confidential information.
9 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of the software for centralized control of the Ruckus Network Director’s network infrastructure lies in the use of a hard-crypted cryptographic key. This allows attackers to circumvent existing security restrictions and gain increased privileges.
9 Jan 202600:00
bdu_fstec
Circl
CVE-2025-44954
8 Jul 202519:55
circl
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

09 Jul 2025 00:00Current
8.6High risk
Vulners AI Score8.6
CVSS 3.19.8 - 9.9
CVSS 48.7
CVSS 29
CVSS 38.8
EPSS0.02044
SSVC
8