Vulnerabilities > CVE-2020-13914 - Unspecified vulnerability in Ruckuswireless Unleashed Firmware

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

ruckuswireless

NVD

Published: 2020-07-28

Updated: 2021-07-21

Summary

webs in Ruckus Wireless Unleashed through 200.7.10.102.92 allows a remote attacker to cause a denial of service (Segmentation fault) to the webserver via an unauthenticated crafted HTTP request. This affects C110, E510, H320, H510, M510, R320, R310, R500, R510 R600, R610, R710, R720, R750, T300, T301n, T301s, T310c, T310d, T310n, T310s, T610, T710, and T710s devices.

Vulnerable Configurations

Part	Description	Count
OS	Ruckuswireless Ruckuswireless Unleashed Firmware 200.1 Ruckuswireless Unleashed Firmware 200.1.9.12.55 Ruckuswireless Unleashed Firmware 200.3 Ruckuswireless Unleashed Firmware 200.3.9.13.228 Ruckuswireless Unleashed Firmware 200.4.9.13 Ruckuswireless Unleashed Firmware 200.4.9.13.47 Ruckuswireless Unleashed Firmware 200.7.10.102.92	7
Hardware	Ruckuswireless Ruckuswireless C110 - Ruckuswireless E510 - Ruckuswireless H320 - Ruckuswireless H510 - Ruckuswireless M510 - Ruckuswireless R310 - Ruckuswireless R320 - Ruckuswireless R500 - Ruckuswireless R510 - Ruckuswireless R600 - Ruckuswireless R610 - Ruckuswireless R710 - Ruckuswireless R720 - Ruckuswireless R750 - Ruckuswireless T300 - Ruckuswireless T301N - Ruckuswireless T301S - Ruckuswireless T310C - Ruckuswireless T310D - Ruckuswireless T310N - Ruckuswireless T310S - Ruckuswireless T610 - Ruckuswireless T710 - Ruckuswireless T710S -	24

References

https://support.ruckuswireless.com/security_bulletins/304