Approved changes feed: RSS · Atom
cpe:2.3:a:ruckus:smartzone:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Ruckus (b2a3bab4-e849-532f-a1c3-adcf42ff3596) |
|---|---|
| Product | Smartzone (33bc8545-9c9e-540b-b936-67b9f61632eb) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-44962 |
vulnerable | 2026-06-08 07:25:10.923258 |
Details available
MEDIUM (5)
RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build allows ../ directory traversal to read files.
Published: 2025-08-04T00:00:00.000Z
Updated: 2025-11-03T20:04:19.843Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44961 |
vulnerable | 2026-06-08 07:25:10.920555 |
Details available
CRITICAL (9.9)
In RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build, OS command injection can occur via an IP address field provided by an authenticated user.
Published: 2025-08-04T00:00:00.000Z
Updated: 2025-11-03T20:04:18.408Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44960 |
vulnerable | 2026-06-08 07:25:10.918960 |
Details available
HIGH (8.5)
RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build allows OS command injection via a certain parameter in an API route.
Published: 2025-08-04T00:00:00.000Z
Updated: 2025-11-03T20:04:17.043Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44957 |
vulnerable | 2026-06-08 07:25:10.916552 |
Details available
HIGH (8.5)
Ruckus SmartZone (SZ) before 6.1.2p3 Refresh Build allows authentication bypass via a valid API key and crafted HTTP headers.
Published: 2025-08-04T00:00:00.000Z
Updated: 2025-11-03T20:04:14.322Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-44954 |
vulnerable | 2026-06-08 07:25:10.892389 |
Details available
CRITICAL (9)
RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account.
Published: 2025-08-04T00:00:00.000Z
Updated: 2025-08-05T17:43:44.355Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.