CVE-2019-19835

Sažetak

SSRF in AjaxRestrictedCmdStat in zap in Ruckus Wireless Unleashed through 200.7.10.102.64 allows a remote denial of service via the server attribute to the tools/_rcmdstat.jsp URI.

Reference

https://alephsecurity.com/2020/01/14/ruckus-wireless
https://fahrplan.events.ccc.de/congress/2019/Fahrplan/events/10816.html
https://www.ruckuswireless.com/security/299/view/txt

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

27-01-2020 - 13:00

Objavljeno

23-01-2020 - 13:15