2 matches found
CVE-2023-45992
A vulnerability in the web-based interface of the RUCKUS Cloudpath product on version 5.12 build 5538 or before to could allow a remote, unauthenticated attacker to execute persistent XSS and CSRF attacks against a user of the admin management interface. A successful attack, combined with a certa...
CVE-2023-45992
RUCKUS Cloudpath web interface (version 5.12 build 5538 or earlier) is affected by a remote, unauthenticated XSS and CSRF vulnerability. The issue allows an attacker to execute persistent XSS/CSRF via crafted input in the onboarding portal’s macaddress parameter and, with a specific admin action,...