← volver
CVE-2023-7338

Ruckus Unleashed Authenticated RCE in Gateway Mode

CVSS 7.7 HIGHEPSS 0.5%CWE-78
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.7EPSS 0.5%KEV nãoPoC Nuclei Metasploit Patch referenciado
Ciclo de vida
26 mar 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
Ruckus Unleashed contains a remote code execution vulnerability in the web-based management interface that allows authenticated remote attackers to execute arbitrary code on the system when gateway mode is enabled. Attackers can exploit this vulnerability by sending specially crafted requests through the management interface to achieve arbitrary code execution on affected systems.
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Productos afectados
Ruckus Networks · Ruckus C110Ruckus Networks · Ruckus E510Ruckus Networks · Ruckus H320Ruckus Networks · RUCKUS H350Ruckus Networks · Ruckus H510Ruckus Networks · RUCKUS H550Ruckus Networks · Ruckus M510-JPRuckus Networks · Ruckus R320Ruckus Networks · RUCKUS R350Ruckus Networks · Ruckus R510Ruckus Networks · RUCKUS R550Ruckus Networks · Ruckus R610Ruckus Networks · RUCKUS R650Ruckus Networks · Ruckus R710Ruckus Networks · Ruckus R720Ruckus Networks · RUCKUS R750Ruckus Networks · RUCKUS R850Ruckus Networks · Ruckus T310cRuckus Networks · Ruckus T310dRuckus Networks · Ruckus T310nRuckus Networks · Ruckus T310sRuckus Networks · RUCKUS T350cRuckus Networks · RUCKUS T350dRuckus Networks · RUCKUS T350seRuckus Networks · Ruckus T610Ruckus Networks · Ruckus T710Ruckus Networks · Ruckus T710sRuckus Networks · RUCKUS T750Ruckus Networks · RUCKUS T750SERuckus Networks · RUCKUS Unleashed

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://support.ruckuswireless.com/security_bulletins/320https://www.vulncheck.com/advisories/ruckus-unleashed-authenticated-rce-in-gateway-mode