3 matches found
Ruckus IoT Controller Web UI Authentication Bypass (CVE-2020-26879)
An authentication bypass vulnerability exists in Ruckus IoT Controller Web UI. The vulnerability is due to improperly handling of a crafted HTTP request. A remote attacker could exploit the vulnerability by sending crafted HTTP requests to the target server...
CVE-2020-26879
creationtimestamp| type| source ---|---|--- 2020-11-03 10:00:00+00:00| published-proof-of-concept| https://t.me/cybred/191 2021-01-08 12:09:18+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/1986 2025-06-10 23:03:00+00:00| confirmed|...
CVE-2020-26879
Ruckus vRioT (through 1.5.1.0.21) contains an API backdoor via a hardcoded token in validate_token.py, allowing unauthenticated interaction with the service API. Affected versions include 1.5.1.0.21 and earlier. NVD and related templates describe a high-severity, unauthenticated remote risk (CVSS...