CVE-2025-46117 Information

Jul 22, 2025 cve

Description

An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139 and in Ruckus ZoneDirector prior to 10.5.1.0.279 where a hidden debug script .ap_debug.sh invoked from the restricted CLI does not properly sanitize its input allowing an authenticated attacker to execute arbitrary commands as root on the controller or specified target.

Reference

http://commscope.com https://sector7.computest.nl/post/2025-07-ruckus-unleashed/ https://support.ruckuswireless.com/security_bulletins/330

CNNVD-202507-2652 (Published: 2025-07-21)

Share on:

CVE-2025-46117 Information

Description

Reference

Related CNNVD