Vulnerability Details CVE-2025-46118
An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139 and in Ruckus ZoneDirector prior to 10.5.1.0.279, where hard-coded credentials for the ftpuser account provide FTP access to the controller, enabling a remote attacker to upload or retrieve arbitrary files from writable firmware directories and thereby expose sensitive information or compromise the controller.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.4%
CVSS Severity
CVSS v3 Score 5.3
References
Products affected by CVE-2025-46118
-
cpe:2.3:a:ruckuswireless:ruckus_unleashed:*
-
cpe:2.3:a:ruckuswireless:ruckus_zonedirector:*
-
cpe:2.3:h:commscope:ruckus_c110:-
-
cpe:2.3:h:commscope:ruckus_e510:-
-
cpe:2.3:h:commscope:ruckus_h320:-
-
cpe:2.3:h:commscope:ruckus_h350:-
-
cpe:2.3:h:commscope:ruckus_h510:-
-
cpe:2.3:h:commscope:ruckus_h550:-
-
cpe:2.3:h:commscope:ruckus_m510-jp:-
-
cpe:2.3:h:commscope:ruckus_m510:-
-
cpe:2.3:h:commscope:ruckus_r310:-
-
cpe:2.3:h:commscope:ruckus_r320:-
-
cpe:2.3:h:commscope:ruckus_r350:-
-
cpe:2.3:h:commscope:ruckus_r350e:-
-
cpe:2.3:h:commscope:ruckus_r510:-
-
cpe:2.3:h:commscope:ruckus_r550:-
-
cpe:2.3:h:commscope:ruckus_r560:-
-
cpe:2.3:h:commscope:ruckus_r610:-
-
cpe:2.3:h:commscope:ruckus_r650:-
-
cpe:2.3:h:commscope:ruckus_r670:-
-
cpe:2.3:h:commscope:ruckus_r710:-
-
cpe:2.3:h:commscope:ruckus_r720:-
-
cpe:2.3:h:commscope:ruckus_r730:-
-
cpe:2.3:h:commscope:ruckus_r750:-
-
cpe:2.3:h:commscope:ruckus_r760:-
-
cpe:2.3:h:commscope:ruckus_r770:-
-
cpe:2.3:h:commscope:ruckus_r850:-
-
cpe:2.3:h:commscope:ruckus_t310c:-
-
cpe:2.3:h:commscope:ruckus_t310n:-
-
cpe:2.3:h:commscope:ruckus_t310s:-
-
cpe:2.3:h:commscope:ruckus_t350c:-
-
cpe:2.3:h:commscope:ruckus_t350d:-
-
cpe:2.3:h:commscope:ruckus_t350se:-
-
cpe:2.3:h:commscope:ruckus_t610:-
-
cpe:2.3:h:commscope:ruckus_t670:-
-
cpe:2.3:h:commscope:ruckus_t710:-
-
cpe:2.3:h:commscope:ruckus_t710s:-
-
cpe:2.3:h:commscope:ruckus_t750:-
-
cpe:2.3:h:commscope:ruckus_t750se:-
-
cpe:2.3:h:commscope:ruckus_t811-cm:-
-
cpe:2.3:h:commscope:ruckus_t811-cm_(non-sfp):-
-
cpe:2.3:h:commscope:zonedirector_1200:-