CVE-2017-6229
14.02.2018, 19:29
Ruckus Networks Unleashed AP firmware releases before 200.6.10.1.x and Ruckus Networks Zone Director firmware releases 10.1.0.0.x, 9.10.2.0.x, 9.12.3.0.x, 9.13.3.0.x, 10.0.1.0.x or before contain authenticated Root Command Injection in the CLI that could allow authenticated valid users to execute privileged commands on the respective systems.
| Vendor | Product | Version |
|---|---|---|
| ruckuswireless | r500_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | r600_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | r310_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | h320_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | h510_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | r710_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | r720_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | t300_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | t301_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | t300e_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | t610_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | t710_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | r510_firmware | 𝑥 < 200.6.10.1.0 |
| ruckuswireless | zonedirector_1200_firmware | 9.10.2.0.11 ≤ 𝑥 ≤ 9.10.2.0.53 |
| ruckuswireless | zonedirector_1200_firmware | 9.12.3.0.28 ≤ 𝑥 ≤ 9.12.3.0.83 |
| ruckuswireless | zonedirector_1200_firmware | 9.13.3.0.22 ≤ 𝑥 ≤ 9.13.3.0.145 |
| ruckuswireless | zonedirector_1200_firmware | 10.0.1.0.17 ≤ 𝑥 ≤ 10.0.1.0.44 |
| ruckuswireless | zonedirector_1200_firmware | 10.1.0.0.1515 |
| ruckuswireless | zonedirector_3000_firmware | 9.10.2.0.11 ≤ 𝑥 ≤ 9.10.2.0.53 |
| ruckuswireless | zonedirector_3000_firmware | 9.12.3.0.28 ≤ 𝑥 ≤ 9.12.3.0.83 |
| ruckuswireless | zonedirector_3000_firmware | 9.13.3.0.22 ≤ 𝑥 ≤ 9.13.3.0.145 |
| ruckuswireless | zonedirector_3000_firmware | 10.0.1.0.17 ≤ 𝑥 ≤ 10.0.1.0.44 |
| ruckuswireless | zonedirector_3000_firmware | 10.1.0.0.1515 |
𝑥
= Vulnerable software versions