{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2023-7338", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2026-03-23T16:18:41.704Z", "datePublished": "2026-03-26T19:20:53.252Z", "dateUpdated": "2026-03-27T21:55:37.051Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-26T19:20:53.252Z"}, "title": "Ruckus Unleashed Authenticated RCE in Gateway Mode", "datePublic": "2023-07-31T00:00:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-78", "description": "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)", "type": "CWE"}]}], "affected": [{"vendor": "Ruckus Networks", "product": "RUCKUS H350", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS H550", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R350", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R550", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R650", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R750", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R850", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T350c", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T350d", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T350se", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T750", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T750SE", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS Unleashed", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus C110", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus E510", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus H320", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus H510", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus M510-JP", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R320", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R510", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R610", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R710", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R720", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T310c", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T310d", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T310n", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T310s", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T610", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T710", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T710s", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}], "descriptions": [{"lang": "en", "value": "Ruckus Unleashed contains a remote code execution vulnerability in the web-based management interface that allows authenticated remote attackers to execute arbitrary code on the system when gateway mode is enabled. Attackers can exploit this vulnerability by sending specially crafted requests through the management interface to achieve arbitrary code execution on affected systems.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>Ruckus Unleashed contains a remote code execution vulnerability in the web-based management interface that allows authenticated remote attackers to execute arbitrary code on the system when gateway mode is enabled. Attackers can exploit this vulnerability by sending specially crafted requests through the management interface to achieve arbitrary code execution on affected systems.</p>"}]}], "references": [{"url": "https://support.ruckuswireless.com/security_bulletins/320", "name": "Ruckus Security Bulletin 20230731", "tags": ["vendor-advisory"]}, {"url": "https://www.vulncheck.com/advisories/ruckus-unleashed-authenticated-rce-in-gateway-mode", "tags": ["third-party-advisory"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "LOW", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subIntegrityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "HIGH", "baseScore": 7.7, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"}}, {"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "HIGH", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "HIGH", "baseScore": 7.5, "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-27T21:55:24.642662Z", "id": "CVE-2023-7338", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T21:55:37.051Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-7338", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-27T21:55:24.642662Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T21:55:32.806Z"}}], "cna": {"title": "Ruckus Unleashed Authenticated RCE in Gateway Mode", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 7.7, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Ruckus Networks", "product": "RUCKUS H350", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS H550", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R350", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R550", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R650", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R750", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS R850", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T350c", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T350d", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T350se", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T750", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS T750SE", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "RUCKUS Unleashed", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus C110", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus E510", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus H320", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus H510", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus M510-JP", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R320", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R510", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R610", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R710", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus R720", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T310c", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T310d", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T310n", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T310s", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T610", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T710", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}, {"vendor": "Ruckus Networks", "product": "Ruckus T710s", "versions": [{"status": "affected", "version": "unknown", "versionType": "custom"}], "defaultStatus": "affected"}], "datePublic": "2023-07-31T00:00:00.000Z", "references": [{"url": "https://support.ruckuswireless.com/security_bulletins/320", "name": "Ruckus Security Bulletin 20230731", "tags": ["vendor-advisory"]}, {"url": "https://www.vulncheck.com/advisories/ruckus-unleashed-authenticated-rce-in-gateway-mode", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "Vulnogram 1.0.1"}, "descriptions": [{"lang": "en", "value": "Ruckus Unleashed contains a remote code execution vulnerability in the web-based management interface that allows authenticated remote attackers to execute arbitrary code on the system when gateway mode is enabled. Attackers can exploit this vulnerability by sending specially crafted requests through the management interface to achieve arbitrary code execution on affected systems.", "supportingMedia": [{"type": "text/html", "value": "<p>Ruckus Unleashed contains a remote code execution vulnerability in the web-based management interface that allows authenticated remote attackers to execute arbitrary code on the system when gateway mode is enabled. Attackers can exploit this vulnerability by sending specially crafted requests through the management interface to achieve arbitrary code execution on affected systems.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-78", "description": "Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-26T19:20:53.252Z"}}}, "cveMetadata": {"cveId": "CVE-2023-7338", "state": "PUBLISHED", "dateUpdated": "2026-03-27T21:55:37.051Z", "dateReserved": "2026-03-23T16:18:41.704Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2026-03-26T19:20:53.252Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Ruckus Unleashed contains a remote code execution vulnerability in the web-based management interface that allows authenticated remote attackers to execute arbitrary code on the system when gateway mode is enabled. Attackers can exploit this vulnerability by sending specially crafted requests through the management interface to achieve arbitrary code execution on affected systems."}, {"lang": "es", "value": "Ruckus Unleashed contiene una vulnerabilidad de ejecuci\u00f3n remota de c\u00f3digo en la interfaz de gesti\u00f3n basada en web que permite a atacantes remotos autenticados ejecutar c\u00f3digo arbitrario en el sistema cuando el modo de pasarela est\u00e1 habilitado. Los atacantes pueden explotar esta vulnerabilidad enviando solicitudes especialmente dise\u00f1adas a trav\u00e9s de la interfaz de gesti\u00f3n para lograr la ejecuci\u00f3n de c\u00f3digo arbitrario en los sistemas afectados."}], "id": "CVE-2023-7338", "lastModified": "2026-03-30T13:26:50.827", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 5.9, "source": "disclosure@vulncheck.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2026-03-26T20:16:08.853", "references": [{"source": "disclosure@vulncheck.com", "url": "https://support.ruckuswireless.com/security_bulletins/320"}, {"source": "disclosure@vulncheck.com", "url": "https://www.vulncheck.com/advisories/ruckus-unleashed-authenticated-rce-in-gateway-mode"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "disclosure@vulncheck.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus C110", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_c110", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus E510", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_e510", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus H320", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_h320", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS H350", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_h350", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus H510", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_h510", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS H550", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_h550", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus M510-JP", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_m510-jp", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus R320", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r320", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS R350", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r350", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus R510", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r510", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS R550", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r550", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus R610", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r610", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS R650", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r650", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus R710", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r710", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus R720", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r720", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS R750", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r750", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS R850", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_r850", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus T310c", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t310c", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus T310d", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t310d", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus T310n", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t310n", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus T310s", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t310s", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS T350c", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t350c", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS T350d", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t350d", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "product": "ruckus_t350se", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus T610", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t610", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus T710", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t710", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "Ruckus T710s", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t710s", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS T750", "source": "cna", "vendor": "Ruckus Networks"}, "product": "ruckus_t750", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "product": "ruckus_t750se", "vendor": "ruckusnetworks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "unknown"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "product": "ruckus_unleashed", "vendor": "ruckusnetworks"}], "analysis": {"en": {"generated_at": "2026-03-26T20:22:07.323030+00:00", "value": {"mitigation_remediation": ["Apply the latest firmware update released by Ruckus for the affected devices.", "If gateway mode is not required for your deployment, disable it to eliminate the attack surface.", "Limit management interface access to trusted networks or use VPN tunnels and restrict inbound ports to known administrators.", "Verify that the firmware update removes the command injection bug by testing in a lab or applying the vendor's validation checklist.", "If immediate patching is not feasible, isolate vulnerable devices from critical network segments until a fix is applied."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "Affected products include a broad range of Ruckus routers and gateways such as the H350, H550, R350, R550, R650, R750, R850, T350c, T350d, T350se, T750, T750SE, Unleashed, C110, E510, H320, H510, M510\u2011JP, R320, R510, R610, R710, R720, T310c, T310d, T310n, T310s, T610, T710, and T710s. Version information is not specified in the advisory, so all firmware revisions of these models that support gateway mode remain potentially vulnerable.", "description_and_impact": "The vulnerability allows authenticated users to send specially crafted requests via the web\u2011based management interface of Ruckus Unleashed systems when gateway mode is enabled, leading to arbitrary code execution on the device. This represents a classic operating system command injection weakness (CWE\u201178). Successful exploitation would grant the attacker full control over the affected device, enabling them to alter configurations, install additional malware, or pivot to other network assets.", "risk_and_exploitability": "According to the CVSS score, the vulnerability has a severity of 7.7, indicating significant risk. The exploit score (EPSS) is not released, and the vulnerability is not catalogued in CISA\u2019s KEV list, suggesting a lower public exploitation rate so far. The attack requires authenticated access to the device\u2019s management interface, so attackers must first gain legitimate credentials or otherwise bypass authentication. Once authenticated, they can send crafted HTTP requests to trigger the command injection and execute arbitrary code. The risk is amplified on networks where the management interface is exposed to untrusted networks or the internet."}}}}, "created": "2026-03-27T08:33:12.766381+00:00", "updated": "2026-03-27T09:25:32.913869+00:00", "vendors": ["ruckusnetworks", "ruckusnetworks$PRODUCT$ruckus_c110", "ruckusnetworks$PRODUCT$ruckus_e510", "ruckusnetworks$PRODUCT$ruckus_h320", "ruckusnetworks$PRODUCT$ruckus_h350", "ruckusnetworks$PRODUCT$ruckus_h510", "ruckusnetworks$PRODUCT$ruckus_h550", "ruckusnetworks$PRODUCT$ruckus_m510-jp", "ruckusnetworks$PRODUCT$ruckus_r320", "ruckusnetworks$PRODUCT$ruckus_r350", "ruckusnetworks$PRODUCT$ruckus_r510", "ruckusnetworks$PRODUCT$ruckus_r550", "ruckusnetworks$PRODUCT$ruckus_r610", "ruckusnetworks$PRODUCT$ruckus_r650", "ruckusnetworks$PRODUCT$ruckus_r710", "ruckusnetworks$PRODUCT$ruckus_r720", "ruckusnetworks$PRODUCT$ruckus_r750", "ruckusnetworks$PRODUCT$ruckus_r850", "ruckusnetworks$PRODUCT$ruckus_t310c", "ruckusnetworks$PRODUCT$ruckus_t310d", "ruckusnetworks$PRODUCT$ruckus_t310n", "ruckusnetworks$PRODUCT$ruckus_t310s", "ruckusnetworks$PRODUCT$ruckus_t350c", "ruckusnetworks$PRODUCT$ruckus_t350d", "ruckusnetworks$PRODUCT$ruckus_t350se", "ruckusnetworks$PRODUCT$ruckus_t610", "ruckusnetworks$PRODUCT$ruckus_t710", "ruckusnetworks$PRODUCT$ruckus_t710s", "ruckusnetworks$PRODUCT$ruckus_t750", "ruckusnetworks$PRODUCT$ruckus_t750se", "ruckusnetworks$PRODUCT$ruckus_unleashed"]}