Vulnerabilities > Ruckussecurity

DATE CVE VULNERABILITY TITLE RISK
2020-06-08 CVE-2020-12695 Incorrect Default Permissions vulnerability in multiple products
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.
7.5
2018-05-29 CVE-2018-11027 Cross-site Scripting vulnerability in Ruckussecurity Icx7450-48 Firmware
A reflected XSS vulnerability on Ruckus ICX7450-48 devices allows remote attackers to inject arbitrary web script or HTML.
network
low complexity
ruckussecurity CWE-79
6.1