6 matches found
Ruckus Wireless ICX Switches Uncontrolled Resource Consumption (CVE-2019-11478)
Three flaws were found in the Linux kernel's handling of TCP networking. The most severe vulnerability could allow a remote attacker to trigger a kernel panic in systems running the affected software and, as a result, impact the system's availability. The issues have been assigned multiple CVEs:...
Ruckus Wireless ICX Switches Cross-site Scripting and Cross-site Request Forgery (CVE-2023-39905)
A vulnerability in the web-based management interface of the RUCKUS ICX product line could allow a remote attacker to execute XSS and CSRF attacks against the user of the interface. To exploit this vulnerability, an attacker would require the targeted user to click a crafted link that would send ...
Ruckus Wireless ICX Switches Cross-site Scripting and Cross-site Request Forgery (CVE-2023-39904)
A vulnerability in the web-based management interface of the RUCKUS ICX product line could allow a remote attacker to execute XSS and CSRF attacks against the user of the interface. To exploit this vulnerability, an attacker would require the targeted user to click a crafted link that would send ...
Ruckus Wireless ICX Switches Cross-site Scripting (CVE-2013-6786)
Due to a Cross-site scripting XSS vulnerability, by requesting a nonexistent URI in a crafted HTTP Referrer header, arbitrary web scripts or HTML can be injected to the Ruckus FastIron device's web server. This plugin only works with Tenable.ot. Please visit...
Ruckus Wireless ICX Switches Path Traversal (CVE-2024-50607)
The following vulnerabilities are found in the RUCKUS FastIron firmware that runs on the RUCKUS ICX product line: - CVE-2024-50607: Directory traversal vulnerability - CVE-2024-50604: Insufficient validation for software component integrity check Collectively, these vulnerabilities can allow an...
Ruckus Wireless ICX Switches Improper Validation of Integrity Check Value (CVE-2024-50604)
The following vulnerabilities are found in the RUCKUS FastIron firmware that runs on the RUCKUS ICX product line: - CVE-2024-50607: Directory traversal vulnerability - CVE-2024-50604: Insufficient validation for software component integrity check Collectively, these vulnerabilities can allow an...