PT-2025-28951 · Ruckus · Ruckus Smartzone
Noam Moshe
·
Published
2025-07-08
·
Updated
2025-08-07
·
CVE-2025-44961
CVSS v3.1
9.9
Critical
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
RUCKUS SmartZone (SZ) versions prior to 6.1.2p3 Refresh Build
Description
An OS command injection can occur via an IP address field provided by an authenticated user.
Recommendations
Update RUCKUS SmartZone (SZ) to version 6.1.2p3 Refresh Build or later.
Fix
OS Command Injection
Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Ruckus Smartzone