CVE-2020-7983

A CSRF issue in login.asp on Ruckus R500 3.4.2.0.384 devices allows remote attackers to access the panel or conduct SSRF attacks.
CSRF
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.1 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 36%
VendorProductVersion
commscoperuckus_zoneflex_r500_firmware
3.4.2.0.384
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://gist.github.com/CyberSecurityUP/26c5b032897630fe8407da4a8ef216d4
https://gist.github.com/CyberSecurityUP/26c5b032897630fe8407da4a8ef216d4