Arris - Ruckus Zoneflex R500 CVE

Filtered by vendor Arris Subscribe

Filtered by product Ruckus Zoneflex R500

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-8438	1 Arris	2 Ruckus Zoneflex R500, Ruckus Zoneflex R500 Firmware	2023-12-10	9.0 HIGH	7.2 HIGH
Ruckus ZoneFlex R500 104.0.0.0.1347 devices allow an authenticated attacker to execute arbitrary OS commands via the hidden /forms/nslookupHandler form, as demonstrated by the nslookuptarget=\|cat${IFS} substring.

Vulnerabilities (CVE)