PT-2025-31827 · Ruckus · Ruckus Network Director
Noam Moshe
·
Published
2025-07-08
·
Updated
2025-08-04
·
CVE-2025-44963
CVSS v3.1
9.0
Critical
| Vector | AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
RUCKUS Network Director versions prior to 4.5
Description
RUCKUS Network Director (RND) is susceptible to an issue allowing an attacker to spoof an administrator JSON Web Token (JWT) if they possess knowledge of a hardcoded secret key.
Recommendations
Update RUCKUS Network Director to version 4.5 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ruckus Network Director