Lucene search
K

120 matches found

NVD
NVD
added 2025/08/04 5:15 p.m.4 views

CVE-2025-44961

In RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build, OS command injection can occur via an IP address field provided by an authenticated user...

9.9CVSS0.02044EPSS
Exploits0References4
OSV
OSV
added 2025/08/04 5:15 p.m.9 views

CVE-2025-44954

RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account...

9.8CVSS5.8AI score0.0072EPSS
Exploits0References3
NVD
NVD
added 2025/08/04 5:15 p.m.48 views

CVE-2025-44957

Ruckus SmartZone SZ before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers...

8.8CVSS0.00891EPSS
Exploits0References4
OSV
OSV
added 2025/08/04 5:15 p.m.7 views

CVE-2025-44957

Ruckus SmartZone SZ before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers...

8.8CVSS5.8AI score0.00891EPSS
Exploits0References4
NVD
NVD
added 2025/08/04 5:15 p.m.18 views

CVE-2025-44954

RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account...

9.8CVSS0.0072EPSS
Exploits0References3
CVE
CVE
added 2025/08/04 12:0 a.m.33 views

CVE-2025-44960

CVE-2025-44960 affects RUCKUS SmartZone (SZ) prior to 6.1.2p3 Refresh Build, allowing OS command injection via a parameter in an API route. Technical details across connected sources confirm an OS command-injection vulnerability in SZ’s API handling, with elevated risk when exploited remotely (ne...

8.8CVSS8.9AI score0.01772EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2025/08/04 12:0 a.m.9 views

CVE-2025-44961

In RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build, OS command injection can occur via an IP address field provided by an authenticated user...

9.9CVSS0.02044EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/04 12:0 a.m.9 views

CVE-2025-44962

RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build allows ../ directory traversal to read files...

5CVSS0.00735EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/04 12:0 a.m.5 views

RUCKUS SmartZone 安全漏洞

RUCKUS SmartZone is a network controller from RUCKUS. A security vulnerability exists in versions prior to RUCKUS SmartZone 6.1.2p3 Refresh Build, which stems from a vulnerability that allows files to be read via... /directory traversal to read files...

5CVSS9.1AI score0.00735EPSS
Exploits0References4
CVE
CVE
added 2025/08/04 12:0 a.m.50 views

CVE-2025-44957

CVE-2025-44957 affects Ruckus SmartZone (SZ) prior to 6.1.2p3 Refresh Build. The issue enables authentication bypass using a valid API key and crafted HTTP headers, potentially granting administrator access. Connected PT security notes corroborate the affected software and specify that the workar...

8.8CVSS8.8AI score0.00891EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2025/08/04 12:0 a.m.48 views

CVE-2025-44954

The CVE-2025-44954 issue affects RUCKUS SmartZone (SZ) prior to 6.1.2p3 Refresh Build, where a hardcoded SSH private key for a root-equivalent user enables privilege-level access. PT-Security summarizes multiple vSZ/RND flaws (including hardcoded keys, authentication bypass, and untrusted paramet...

9.8CVSS8.7AI score0.0072EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/04 12:0 a.m.3 views

CVE-2025-44957

Ruckus SmartZone SZ before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers...

8.5CVSS9.7AI score0.00891EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/04 12:0 a.m.5 views

CVE-2025-44962

RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build allows ../ directory traversal to read files...

5CVSS9.5AI score0.00735EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/04 12:0 a.m.10 views

RUCKUS SmartZone 安全漏洞

RUCKUS SmartZone is a network controller from RUCKUS. A security vulnerability exists in versions prior to the RUCKUS SmartZone 6.1.2p3 Refresh Build, which stems from hard-coded SSH private keys and could lead to a security risk...

9.8CVSS9.1AI score0.0072EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/08/04 12:0 a.m.7 views

RUCKUS SmartZone 操作系统命令注入漏洞

RUCKUS SmartZone is a network controller from RUCKUS. An operating system command injection vulnerability exists in versions prior to RUCKUS SmartZone 6.1.2p3 Refresh Build, which stems from OS command injection in API routing and could lead to a security risk...

8.8CVSS9.4AI score0.01772EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/04 12:0 a.m.10 views

CVE-2025-44960

RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build allows OS command injection via a certain parameter in an API route...

8.5CVSS0.01772EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/04 12:0 a.m.3 views

CVE-2025-44954

RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account...

9CVSS9.7AI score0.0072EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/08/04 12:0 a.m.3 views

RUCKUS SmartZone 安全漏洞

RUCKUS SmartZone is a network controller from RUCKUS. A security vulnerability exists in versions prior to RUCKUS SmartZone 6.1.2p3 Refresh Build that stems from an authentication bypass that could lead to a security risk...

8.8CVSS9.3AI score0.00891EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/04 12:0 a.m.49 views

CVE-2025-44957

Ruckus SmartZone SZ before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers...

8.5CVSS0.00891EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/08/04 12:0 a.m.2 views

CVE-2025-44960

RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build allows OS command injection via a certain parameter in an API route...

8.5CVSS9.9AI score0.01772EPSS
Exploits0References3
Rows per page
Query Builder