Arris - Ruckus Zoneflex R500 CVE

Filtered by vendor Arris Subscriptions

Filtered by product Ruckus Zoneflex R500 Subscriptions

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2020-8438	1 Arris	2 Ruckus Zoneflex R500, Ruckus Zoneflex R500 Firmware	2024-08-04	7.2 High
Ruckus ZoneFlex R500 104.0.0.0.1347 devices allow an authenticated attacker to execute arbitrary OS commands via the hidden /forms/nslookupHandler form, as demonstrated by the nslookuptarget=\|cat${IFS} substring.

Page 1 of 1.