CVE-2023-25717
Published on February 13, 2023

Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring.

Vendor Advisory NVD

Known Exploited Vulnerability

This Multiple Ruckus Wireless Products CSRF and RCE Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. Ruckus Wireless Access Point (AP) software contains an unspecified vulnerability in the web services component. If the web services component is enabled on the AP, an attacker can perform cross-site request forgery (CSRF) or remote code execution (RCE). This vulnerability impacts Ruckus ZoneDirector, SmartZone, and Solo APs.

The following remediation steps are recommended / required by June 2, 2023: Apply updates per vendor instructions or disconnect product if it is end-of-life.

Vulnerability Analysis

CVE-2023-25717 can be exploited with network access, and does not require authorization privileges or user interaction. This vulnerability is considered to have a low attack complexity. It has the highest possible exploitability rating (3.9). The potential impact of an exploit of this vulnerability is considered to be critical as this vulnerability has a high impact to the confidentiality, integrity and availability of this component.

What is a Code Injection Vulnerability?

The software constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVE-2023-25717 has been classified to as a Code Injection vulnerability or weakness.

Products Associated with CVE-2023-25717

You can be notified by stack.watch whenever vulnerabilities like CVE-2023-25717 are published in these products:

What versions are vulnerable to CVE-2023-25717?