120 matches found
CVE-2025-44961
In RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build, OS command injection can occur via an IP address field provided by an authenticated user...
CVE-2025-44954
RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account...
CVE-2025-44957
Ruckus SmartZone SZ before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers...
CVE-2025-44957
Ruckus SmartZone SZ before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers...
CVE-2025-44954
RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account...
CVE-2025-44960
CVE-2025-44960 affects RUCKUS SmartZone (SZ) prior to 6.1.2p3 Refresh Build, allowing OS command injection via a parameter in an API route. Technical details across connected sources confirm an OS command-injection vulnerability in SZ’s API handling, with elevated risk when exploited remotely (ne...
CVE-2025-44961
In RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build, OS command injection can occur via an IP address field provided by an authenticated user...
CVE-2025-44962
RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build allows ../ directory traversal to read files...
RUCKUS SmartZone 安全漏洞
RUCKUS SmartZone is a network controller from RUCKUS. A security vulnerability exists in versions prior to RUCKUS SmartZone 6.1.2p3 Refresh Build, which stems from a vulnerability that allows files to be read via... /directory traversal to read files...
CVE-2025-44957
CVE-2025-44957 affects Ruckus SmartZone (SZ) prior to 6.1.2p3 Refresh Build. The issue enables authentication bypass using a valid API key and crafted HTTP headers, potentially granting administrator access. Connected PT security notes corroborate the affected software and specify that the workar...
CVE-2025-44954
The CVE-2025-44954 issue affects RUCKUS SmartZone (SZ) prior to 6.1.2p3 Refresh Build, where a hardcoded SSH private key for a root-equivalent user enables privilege-level access. PT-Security summarizes multiple vSZ/RND flaws (including hardcoded keys, authentication bypass, and untrusted paramet...
CVE-2025-44957
Ruckus SmartZone SZ before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers...
CVE-2025-44962
RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build allows ../ directory traversal to read files...
RUCKUS SmartZone 安全漏洞
RUCKUS SmartZone is a network controller from RUCKUS. A security vulnerability exists in versions prior to the RUCKUS SmartZone 6.1.2p3 Refresh Build, which stems from hard-coded SSH private keys and could lead to a security risk...
RUCKUS SmartZone 操作系统命令注入漏洞
RUCKUS SmartZone is a network controller from RUCKUS. An operating system command injection vulnerability exists in versions prior to RUCKUS SmartZone 6.1.2p3 Refresh Build, which stems from OS command injection in API routing and could lead to a security risk...
CVE-2025-44960
RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build allows OS command injection via a certain parameter in an API route...
CVE-2025-44954
RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account...
RUCKUS SmartZone 安全漏洞
RUCKUS SmartZone is a network controller from RUCKUS. A security vulnerability exists in versions prior to RUCKUS SmartZone 6.1.2p3 Refresh Build that stems from an authentication bypass that could lead to a security risk...
CVE-2025-44957
Ruckus SmartZone SZ before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers...
CVE-2025-44960
RUCKUS SmartZone SZ before 6.1.2p3 Refresh Build allows OS command injection via a certain parameter in an API route...