CVEs (3)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Commscope 1Ruckus Zoneflex R500 Firmware Nov 21, 2024 May 5, 2020 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 CSRF in login.asp on Ruckus devices allows an attacker to access the panel, and use SSRF to perform scraping or other analysis via the SUBCA-1 field on the Wireless Admin screen. |
1Commscope 1Ruckus Zoneflex R500 Firmware Nov 21, 2024 May 5, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Ruckus R500 3.4.2.0.384 devices allow XSS via the index.asp Device Name field. |
1Commscope 1Ruckus Zoneflex R500 Firmware Nov 21, 2024 May 5, 2020 N/A· v4 8.1 HIGH· v3 5.8 MEDIUM· v2 A CSRF issue in login.asp on Ruckus R500 3.4.2.0.384 devices allows remote attackers to access the panel or conduct SSRF attacks. |