CVE-2023-49225

CVE-2023-49225

CVSS 6.1 MEDIUMEPSS 0.4%CWE-79

A cross-site-scripting vulnerability exists in Ruckus Access Point products (ZoneDirector, SmartZone, and AP Solo). If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is logging in the product. As for the affected products/models/versions, see the information provided by the vendor listed under [References] section or the list under [Product Status] section.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Productos afectados

CommScope, Inc. · AP Solo C110 CommScope, Inc. · AP Solo E510 CommScope, Inc. · AP Solo H320 CommScope, Inc. · AP Solo H350 CommScope, Inc. · AP Solo H510 CommScope, Inc. · AP Solo H550 CommScope, Inc. · AP Solo M510 CommScope, Inc. · AP Solo R310 CommScope, Inc. · AP Solo R320 CommScope, Inc. · AP Solo R350 CommScope, Inc. · AP Solo R510 CommScope, Inc. · AP Solo R550 CommScope, Inc. · AP Solo R560 CommScope, Inc. · AP Solo R610 CommScope, Inc. · AP Solo R650 CommScope, Inc. · AP Solo R710 CommScope, Inc. · AP Solo R720 CommScope, Inc. · AP Solo R730 CommScope, Inc. · AP Solo R750 CommScope, Inc. · AP Solo R760 CommScope, Inc. · AP Solo R850 CommScope, Inc. · AP Solo T305 CommScope, Inc. · AP Solo T310C CommScope, Inc. · AP Solo T310D CommScope, Inc. · AP Solo T310N CommScope, Inc. · AP Solo T310S CommScope, Inc. · AP Solo T350c CommScope, Inc. · AP Solo T350d CommScope, Inc. · AP Solo T350se CommScope, Inc. · AP Solo T610 CommScope, Inc. · AP Solo T610s CommScope, Inc. · AP Solo T710 CommScope, Inc. · AP Solo T710s CommScope, Inc. · AP Solo T750 CommScope, Inc. · AP Solo T750SE CommScope, Inc. · SmartZone CommScope, Inc. · ZoneDirector

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://jvn.jp/en/jp/JVN45891816/https://support.ruckuswireless.com/security_bulletins/323