Skip to main content

Ruckus Cloudpath Enrollment System

1 CVEs product

Monthly

CVE-2023-45992 CRITICAL POC Act Now

A vulnerability in the web-based interface of the RUCKUS Cloudpath product on version 5.12 build 5538 or before to could allow a remote, unauthenticated attacker to execute persistent XSS and CSRF. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF XSS Ruckus Cloudpath Enrollment System
NVD GitHub VulDB
CVSS 3.1
9.6
EPSS
0.6%
EPSS 1% CVSS 9.6
CRITICAL POC Act Now

A vulnerability in the web-based interface of the RUCKUS Cloudpath product on version 5.12 build 5538 or before to could allow a remote, unauthenticated attacker to execute persistent XSS and CSRF. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF XSS Ruckus Cloudpath Enrollment System
NVD GitHub VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy