All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2023-25717
NONEKEVpublish date unavailable
CVSS / 10
// description
Ruckus Wireless Access Point (AP) software contains an unspecified vulnerability in the web services component. If the web services component is enabled on the AP, an attacker can perform cross-site request forgery (CSRF) or remote code execution (RCE). This vulnerability impacts Ruckus ZoneDirector, SmartZone, and Solo APs.
// required action (CISA KEV)
Apply updates per vendor instructions or disconnect product if it is end-of-life.
added 2023-05-12 00:00 UTC