CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-46122

An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139, where the authenticated diagnostics API endpoint `/admin/_cmdstat.jsp` passes attacker-controlled input to the shell without adequate validation, enabling a remote attacker to specify a target by MAC address and execute arbitrary commands as root.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.3%

CVSS Severity

CVSS v3 Score 9.1

References

Products affected by CVE-2025-46122

Ruckuswireless » Ruckus Unleashed » Version: Any

cpe:2.3:a:ruckuswireless:ruckus_unleashed:*
Ruckuswireless » Ruckus Zonedirector » Version: Any

cpe:2.3:a:ruckuswireless:ruckus_zonedirector:*
Commscope » Ruckus C110 » Version: N/A

cpe:2.3:h:commscope:ruckus_c110:-
Commscope » Ruckus E510 » Version: N/A

cpe:2.3:h:commscope:ruckus_e510:-
Commscope » Ruckus H320 » Version: N/A

cpe:2.3:h:commscope:ruckus_h320:-
Commscope » Ruckus H350 » Version: N/A

cpe:2.3:h:commscope:ruckus_h350:-
Commscope » Ruckus H510 » Version: N/A

cpe:2.3:h:commscope:ruckus_h510:-
Commscope » Ruckus H550 » Version: N/A

cpe:2.3:h:commscope:ruckus_h550:-
Commscope » Ruckus M510-Jp » Version: N/A

cpe:2.3:h:commscope:ruckus_m510-jp:-
Commscope » Ruckus M510 » Version: N/A

cpe:2.3:h:commscope:ruckus_m510:-
Commscope » Ruckus R310 » Version: N/A

cpe:2.3:h:commscope:ruckus_r310:-
Commscope » Ruckus R320 » Version: N/A

cpe:2.3:h:commscope:ruckus_r320:-
Commscope » Ruckus R350 » Version: N/A

cpe:2.3:h:commscope:ruckus_r350:-
Commscope » Ruckus R350e » Version: N/A

cpe:2.3:h:commscope:ruckus_r350e:-
Commscope » Ruckus R510 » Version: N/A

cpe:2.3:h:commscope:ruckus_r510:-
Commscope » Ruckus R550 » Version: N/A

cpe:2.3:h:commscope:ruckus_r550:-
Commscope » Ruckus R560 » Version: N/A

cpe:2.3:h:commscope:ruckus_r560:-
Commscope » Ruckus R610 » Version: N/A

cpe:2.3:h:commscope:ruckus_r610:-
Commscope » Ruckus R650 » Version: N/A

cpe:2.3:h:commscope:ruckus_r650:-
Commscope » Ruckus R670 » Version: N/A

cpe:2.3:h:commscope:ruckus_r670:-
Commscope » Ruckus R710 » Version: N/A

cpe:2.3:h:commscope:ruckus_r710:-
Commscope » Ruckus R720 » Version: N/A

cpe:2.3:h:commscope:ruckus_r720:-
Commscope » Ruckus R730 » Version: N/A

cpe:2.3:h:commscope:ruckus_r730:-
Commscope » Ruckus R750 » Version: N/A

cpe:2.3:h:commscope:ruckus_r750:-
Commscope » Ruckus R760 » Version: N/A

cpe:2.3:h:commscope:ruckus_r760:-
Commscope » Ruckus R770 » Version: N/A

cpe:2.3:h:commscope:ruckus_r770:-
Commscope » Ruckus R850 » Version: N/A

cpe:2.3:h:commscope:ruckus_r850:-
Commscope » Ruckus T310c » Version: N/A

cpe:2.3:h:commscope:ruckus_t310c:-
Commscope » Ruckus T310n » Version: N/A

cpe:2.3:h:commscope:ruckus_t310n:-
Commscope » Ruckus T310s » Version: N/A

cpe:2.3:h:commscope:ruckus_t310s:-
Commscope » Ruckus T350c » Version: N/A

cpe:2.3:h:commscope:ruckus_t350c:-
Commscope » Ruckus T350d » Version: N/A

cpe:2.3:h:commscope:ruckus_t350d:-
Commscope » Ruckus T350se » Version: N/A

cpe:2.3:h:commscope:ruckus_t350se:-
Commscope » Ruckus T610 » Version: N/A

cpe:2.3:h:commscope:ruckus_t610:-
Commscope » Ruckus T670 » Version: N/A

cpe:2.3:h:commscope:ruckus_t670:-
Commscope » Ruckus T710 » Version: N/A

cpe:2.3:h:commscope:ruckus_t710:-
Commscope » Ruckus T710s » Version: N/A

cpe:2.3:h:commscope:ruckus_t710s:-
Commscope » Ruckus T750 » Version: N/A

cpe:2.3:h:commscope:ruckus_t750:-
Commscope » Ruckus T750se » Version: N/A

cpe:2.3:h:commscope:ruckus_t750se:-
Commscope » Ruckus T811-Cm » Version: N/A

cpe:2.3:h:commscope:ruckus_t811-cm:-
Commscope » Ruckus T811-Cm (Non-Sfp) » Version: N/A

cpe:2.3:h:commscope:ruckus_t811-cm_(non-sfp):-
Commscope » Zonedirector 1200 » Version: N/A

cpe:2.3:h:commscope:zonedirector_1200:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-46122

Products

Pricing

Contact Us