Ruckus · Ruckus Unleashed · CVE-2019-19840
**Name of the Vulnerable Software and Affected Versions**
Ruckus Unleashed versions through 200.7.10.102.64
**Description**
A stack-based buffer overflow in `zap parse args` in `zap.c` allows remote code execution via an unauthenticated HTTP request.
**Recommendations**
For versions through 200.7.10.102.64, update to a version that fixes the issue in `zap parse args` to prevent remote code execution.
As a temporary workaround, consider restricting access to the `zap` module to minimize the risk of exploitation.