Vulnerabilities > Ruckuswireless > R310 Firmware > 104.0.0.0.1347

DATE CVE VULNERABILITY TITLE RISK
2023-12-07 CVE-2023-49225 Cross-site Scripting vulnerability in Ruckuswireless products
A cross-site-scripting vulnerability exists in Ruckus Access Point products (ZoneDirector, SmartZone, and AP Solo).
network
low complexity
ruckuswireless CWE-79
6.1
6.1
2020-01-19 CVE-2020-7234 Cross-site Scripting vulnerability in Ruckuswireless R310 Firmware 104.0.0.0.1347
Ruckus ZoneFlex R310 104.0.0.0.1347 devices allow Stored XSS via the SSID field on the Configuration > Radio 2.4G > Wireless X screen (after a successful login to the super account).
network
low complexity
ruckuswireless CWE-79
4.8
4.8
2018-02-14 CVE-2017-6229 OS Command Injection vulnerability in Ruckuswireless products
Ruckus Networks Unleashed AP firmware releases before 200.6.10.1.x and Ruckus Networks Zone Director firmware releases 10.1.0.0.x, 9.10.2.0.x, 9.12.3.0.x, 9.13.3.0.x, 10.0.1.0.x or before contain authenticated Root Command Injection in the CLI that could allow authenticated valid users to execute privileged commands on the respective systems.
network
low complexity
ruckuswireless CWE-78
8.8
8.8