Commscope - Ruckus Iot Controller CVE

Filtered by vendor Commscope Subscribe

Filtered by product Ruckus Iot Controller

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-33217	1 Commscope	1 Ruckus Iot Controller	2021-07-09	9.0 HIGH	8.8 HIGH
An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. The Web Application allows Arbitrary Read/Write actions by authenticated users. The API allows an HTTP POST of arbitrary content into any file on the filesystem as root.
CVE-2021-33220	1 Commscope	1 Ruckus Iot Controller	2021-07-09	4.6 MEDIUM	7.8 HIGH
An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. Hard-coded API Keys exist.

Vulnerabilities (CVE)