Commscope Ruckus Iot Controller — known CVE vulnerabilities
Every CVE whose affected-product data names Commscope Ruckus Iot Controller, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2021-33218 — CVSS 9.8 (critical): An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. There are Hard-coded System Passwords that provide shell…
CVE-2021-33216 — CVSS 9.8 (critical): An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. An Undocumented Backdoor exists, allowing shell access via…
CVE-2021-33219 — CVSS 9.8 (critical): An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. There are Hard-coded Web Application Administrator…
CVE-2021-33221 — CVSS 9.8 (critical): An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. There are Unauthenticated API Endpoints.
CVE-2021-33217 — CVSS 8.8 (high): An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. The Web Application allows Arbitrary Read/Write actions by…
CVE-2021-33220 — CVSS 7.8 (high): An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. Hard-coded API Keys exist.
CVE-2021-33215 — CVSS 4.3 (medium): An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. The API allows Directory Traversal.