CVE-2017-6223
8.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD
Description
Ruckus Wireless Zone Director Controller firmware releases ZD9.9.x, ZD9.10.x, ZD9.13.0.x less than 9.13.0.0.232 contain OS Command Injection vulnerabilities in the ping functionality that could allow local authenticated users to execute arbitrary privileged commands on the underlying operating system.
Affected (6)
Products: Ruckus: Zonedirector Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version zd9.10.0.0.218 |
| Running on/with | Platform Versions |
|---|---|
Ruckus Zonedirector | All versions |
References (2)
Source: sirt@brocade.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.