CVE-2020-22662 Information

Description

In Ruckus R310 10.5.1.0.199 Ruckus R500 10.5.1.0.199 Ruckus R600 10.5.1.0.199 Ruckus T300 10.5.1.0.199 Ruckus T301n 10.5.1.0.199 Ruckus T301s 10.5.1.0.199 SmartCell Gateway 200 (SCG200) before 3.6.2.0.795 SmartZone 100 (SZ-100) before 3.6.2.0.795 SmartZone 300 (SZ300) before 3.6.2.0.795 Virtual SmartZone (vSZ) before 3.6.2.0.795 ZoneDirector 1100 9.10.2.0.130 ZoneDirector 1200 10.2.1.0.218 ZoneDirector 3000 10.2.1.0.218 ZoneDirector 5000 10.0.1.0.151 a vulnerability allows attackers to change and set unauthorized \illegal region code\ by remote code Execution command injection which leads to run illegal frequency with maxi output power. Vulnerability allows attacker to create an arbitrary amount of ssid wlans interface per radio which creates overhead over noise (the default max limit is 8 ssid only per radio in solo AP). Vulnerability allows attacker to unlock hidden regions by privilege command injection in WEB GUI.

Reference

https://support.ruckuswireless.com/security_bulletins/302