CVE-2023-49225: XSS
First published: Thu Dec 07 2023(Updated: )
A cross-site-scripting vulnerability exists in Ruckus Access Point products (ZoneDirector, SmartZone, and AP Solo). If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is logging in the product. As for the affected products/models/versions, see the information provided by the vendor listed under [References] section or the list under [Product Status] section.
Credit: vultures@jpcert.or.jp
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Ruckus Wireless R750 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless R750 | ||
| All of | ||
| Ruckus Wireless R650 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless R650 | ||
| All of | ||
| Ruckus Wireless R730 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless R730 | ||
| All of | ||
| Ruckus Wireless T750 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T750 | ||
| All of | ||
| Ruckus Wireless R510 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless R510 | ||
| All of | ||
| Ruckus Wireless E510 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless E510 | ||
| All of | ||
| Ruckus Wireless C110 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless C110 | ||
| All of | ||
| Ruckus Wireless R320 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless R320 | ||
| All of | ||
| Ruckus Wireless H510 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless H510 | ||
| All of | ||
| Ruckus Wireless H320 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless H320 | ||
| All of | ||
| Ruckus Wireless T305 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T305 Firmware | ||
| All of | ||
| Ruckus Wireless M510 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless M510 | ||
| All of | ||
| Ruckus Wireless R720 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless R720 | ||
| All of | ||
| Ruckus Wireless R710 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless R710 | ||
| All of | ||
| Ruckus Wireless T710 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T710 | ||
| All of | ||
| Ruckus Wireless T610 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T610 | ||
| All of | ||
| Ruckus Wireless R610 Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless R610 | ||
| All of | ||
| Ruckus Wireless T310D Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T310d | ||
| All of | ||
| Ruckus Wireless T310S Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T310s | ||
| All of | ||
| Ruckus Wireless T310n Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T310n | ||
| All of | ||
| Ruckus Wireless T310C Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T310c | ||
| All of | ||
| Ruckus Wireless T710S Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T710S | ||
| All of | ||
| Ruckus Wireless T610S Firmware | <=114.0.0.0.6565 | |
| Ruckus Wireless T610 | ||
| All of | ||
| Ruckus Wireless R550 Firmware | <=114.0.0.0.5585 | |
| Ruckus Wireless R550 | ||
| All of | ||
| Ruckus Wireless R850 Firmware | <=114.0.0.0.5585 | |
| Ruckus Wireless R850 | ||
| All of | ||
| Ruckus Wireless T750SE Firmware | <=114.0.0.0.5585 | |
| Ruckus Wireless T750SE | ||
| All of | ||
| Ruckus Wireless R310 Firmware | <=110.0.0.0.2014 | |
| Ruckus Wireless R310 | ||
| All of | ||
| Ruckus Wireless R760 Firmware | <=118.1.0.0.1274 | |
| Ruckus Wireless R760 | ||
| All of | ||
| Ruckus Wireless R560 Firmware | <=118.1.0.0.1908 | |
| Ruckus Wireless R560 | ||
| All of | ||
| Ruckus Wireless H550 Firmware | <=116.0.0.0.1506 | |
| Ruckus Wireless H550 | ||
| All of | ||
| Ruckus Wireless H350 Firmware | <=116.0.0.0.3128 | |
| Ruckus Wireless H350 | ||
| All of | ||
| Ruckus Wireless T350C Firmware | <=116.0.0.0.1543 | |
| Ruckus Wireless T350C | ||
| All of | ||
| Ruckus Wireless T350D Firmware | <=116.0.0.0.1543 | |
| Ruckus Wireless T350D | ||
| All of | ||
| Ruckus Wireless T350SE Firmware | <=116.0.0.0.3136 | |
| Ruckus Wireless T350SE | ||
| All of | ||
| Ruckus Wireless R350 Firmware | <=116.0.0.0.1655 | |
| Ruckus Wireless R350 | ||
| All of | ||
| Ruckus Wireless SmartZone Firmware | <=6.1.1 | |
| Ruckus Wireless SmartZone | ||
| All of | ||
| Ruckus Wireless ZoneDirector Firmware | <=10.5.1 | |
| Ruckus Zonedirector |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2023-49225?
CVE-2023-49225 is classified as a Cross-Site Scripting (XSS) vulnerability with a potential high severity due to the ability to execute arbitrary scripts in the user's web browser.
How do I fix CVE-2023-49225?
To remediate CVE-2023-49225, users should upgrade their Ruckus Access Point firmware to versions beyond 114.0.0.0.6565 for affected models.
Which products are affected by CVE-2023-49225?
CVE-2023-49225 affects various Ruckus Access Point products including R750, R650, R730, T750, and more, specifically those running certain firmware versions.
Can I tell if my Ruckus device is vulnerable to CVE-2023-49225?
You can determine if your Ruckus device is vulnerable by checking its current firmware version against the specifications of CVE-2023-49225.
What happens if CVE-2023-49225 is exploited?
If exploited, CVE-2023-49225 could allow an attacker to inject and execute arbitrary scripts in the context of a logged-in user's web session, compromising user security.
- agent/references
- agent/type
- agent/event
- agent/first-publish-date
- agent/weakness
- agent/author
- agent/remedy
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- vendor/ruckuswireless
- canonical/ruckus wireless r750 firmware
- version/ruckus wireless r750 firmware/114.0.0.0.6565
- canonical/ruckus wireless r750
- canonical/ruckus wireless r650 firmware
- version/ruckus wireless r650 firmware/114.0.0.0.6565
- canonical/ruckus wireless r650
- canonical/ruckus wireless r730 firmware
- version/ruckus wireless r730 firmware/114.0.0.0.6565
- canonical/ruckus wireless r730
- canonical/ruckus wireless t750 firmware
- version/ruckus wireless t750 firmware/114.0.0.0.6565
- canonical/ruckus wireless t750
- canonical/ruckus wireless r510 firmware
- version/ruckus wireless r510 firmware/114.0.0.0.6565
- canonical/ruckus wireless r510
- canonical/ruckus wireless e510 firmware
- version/ruckus wireless e510 firmware/114.0.0.0.6565
- canonical/ruckus wireless e510
- canonical/ruckus wireless c110 firmware
- version/ruckus wireless c110 firmware/114.0.0.0.6565
- canonical/ruckus wireless c110
- canonical/ruckus wireless r320 firmware
- version/ruckus wireless r320 firmware/114.0.0.0.6565
- canonical/ruckus wireless r320
- canonical/ruckus wireless h510 firmware
- version/ruckus wireless h510 firmware/114.0.0.0.6565
- canonical/ruckus wireless h510
- canonical/ruckus wireless h320 firmware
- version/ruckus wireless h320 firmware/114.0.0.0.6565
- canonical/ruckus wireless h320
- canonical/ruckus wireless t305 firmware
- version/ruckus wireless t305 firmware/114.0.0.0.6565
- canonical/ruckus wireless m510 firmware
- version/ruckus wireless m510 firmware/114.0.0.0.6565
- canonical/ruckus wireless m510
- canonical/ruckus wireless r720 firmware
- version/ruckus wireless r720 firmware/114.0.0.0.6565
- canonical/ruckus wireless r720
- canonical/ruckus wireless r710 firmware
- version/ruckus wireless r710 firmware/114.0.0.0.6565
- canonical/ruckus wireless r710
- canonical/ruckus wireless t710 firmware
- version/ruckus wireless t710 firmware/114.0.0.0.6565
- canonical/ruckus wireless t710
- canonical/ruckus wireless t610 firmware
- version/ruckus wireless t610 firmware/114.0.0.0.6565
- canonical/ruckus wireless t610
- canonical/ruckus wireless r610 firmware
- version/ruckus wireless r610 firmware/114.0.0.0.6565
- canonical/ruckus wireless r610
- canonical/ruckus wireless t310d firmware
- version/ruckus wireless t310d firmware/114.0.0.0.6565
- canonical/ruckus wireless t310d
- canonical/ruckus wireless t310s firmware
- version/ruckus wireless t310s firmware/114.0.0.0.6565
- canonical/ruckus wireless t310s
- canonical/ruckus wireless t310n firmware
- version/ruckus wireless t310n firmware/114.0.0.0.6565
- canonical/ruckus wireless t310n
- canonical/ruckus wireless t310c firmware
- version/ruckus wireless t310c firmware/114.0.0.0.6565
- canonical/ruckus wireless t310c
- canonical/ruckus wireless t710s firmware
- version/ruckus wireless t710s firmware/114.0.0.0.6565
- canonical/ruckus wireless t710s
- canonical/ruckus wireless t610s firmware
- version/ruckus wireless t610s firmware/114.0.0.0.6565
- canonical/ruckus wireless r550 firmware
- version/ruckus wireless r550 firmware/114.0.0.0.5585
- canonical/ruckus wireless r550
- canonical/ruckus wireless r850 firmware
- version/ruckus wireless r850 firmware/114.0.0.0.5585
- canonical/ruckus wireless r850
- canonical/ruckus wireless t750se firmware
- version/ruckus wireless t750se firmware/114.0.0.0.5585
- canonical/ruckus wireless t750se
- canonical/ruckus wireless r310 firmware
- version/ruckus wireless r310 firmware/110.0.0.0.2014
- canonical/ruckus wireless r310
- canonical/ruckus wireless r760 firmware
- version/ruckus wireless r760 firmware/118.1.0.0.1274
- canonical/ruckus wireless r760
- canonical/ruckus wireless r560 firmware
- version/ruckus wireless r560 firmware/118.1.0.0.1908
- canonical/ruckus wireless r560
- canonical/ruckus wireless h550 firmware
- version/ruckus wireless h550 firmware/116.0.0.0.1506
- canonical/ruckus wireless h550
- canonical/ruckus wireless h350 firmware
- version/ruckus wireless h350 firmware/116.0.0.0.3128
- canonical/ruckus wireless h350
- canonical/ruckus wireless t350c firmware
- version/ruckus wireless t350c firmware/116.0.0.0.1543
- canonical/ruckus wireless t350c
- canonical/ruckus wireless t350d firmware
- version/ruckus wireless t350d firmware/116.0.0.0.1543
- canonical/ruckus wireless t350d
- canonical/ruckus wireless t350se firmware
- version/ruckus wireless t350se firmware/116.0.0.0.3136
- canonical/ruckus wireless t350se
- canonical/ruckus wireless r350 firmware
- version/ruckus wireless r350 firmware/116.0.0.0.1655
- canonical/ruckus wireless r350
- canonical/ruckus wireless smartzone firmware
- version/ruckus wireless smartzone firmware/6.1.1
- canonical/ruckus wireless smartzone
- canonical/ruckus wireless zonedirector firmware
- version/ruckus wireless zonedirector firmware/10.5.1
- canonical/ruckus zonedirector