Ruckus Products Multiple Vulnerabilities
Last Update Date:
6 Jan 2020 15:04
Release Date:
6 Jan 2020
5463
Views
RISK: Medium Risk
TYPE: Operating Systems - Networks OS
Multiple vulnerabilities were identified in Ruckus products, a remote attacker could exploit some of these vulnerabilities to trigger cross site scripting, denial of service, remote code execution and sensitive information disclosure on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- ZoneDirector firmware version 9.10.x, 9.12.x, 9.13.x, 10.0.x, 10.1.x, 10.2.x, 10.3.x
- Unleashed firmware version 200.6, 200.7
Solutions
Before installation of the software, please visit the software vendor web-site for more details.
- The vendor has issued a fix:
https://www.ruckuswireless.com/security/299/view/pdf
Vulnerability Identifier
- CVE-2019-19834
- CVE-2019-19835
- CVE-2019-19836
- CVE-2019-19837
- CVE-2019-19838
- CVE-2019-19839
- CVE-2019-19840
- CVE-2019-19841
- CVE-2019-19842
- CVE-2019-19843
Source
Related Link
Share with