Commscope - Ruckus Iot Module CVE

Filtered by vendor Commscope Subscribe

Filtered by product Ruckus Iot Module

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-26879	1 Commscope	2 Ruckus Iot Module, Ruckus Vriot	2020-11-02	10.0 HIGH	9.8 CRITICAL
Ruckus vRioT through 1.5.1.0.21 has an API backdoor that is hardcoded into validate_token.py. An unauthenticated attacker can interact with the service API by using a backdoor value as the Authorization header.

Vulnerabilities (CVE)