THREATOPS
THREAT OPSCVEs › CVE-2023-25717

CVE-2023-25717 — Multiple Ruckus Wireless Products CSRF and RCE Vulnerability

CISA KEVExploited: confirmedRuckus Wireless

Ruckus Wireless Access Point (AP) software contains an unspecified vulnerability in the web services component. If the web services component is enabled on the AP, an attacker can perform cross-site request forgery (CSRF) or remote code execution (RCE). This vulnerability impacts Ruckus ZoneDirector, SmartZone, and Solo APs.

Vulnerability details

Related reporting