CVE-2023-25717

Name: CVE-2023-25717
Creator: NVD / NIST
Published: 2023-02-13T20:15:10.973+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

CRITICALCVSS 9.8/10Actively ExploitedEPSS 95.11%

Last modified Jun 17, 2026

CVE-2023-25717 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring.. CISA has confirmed active exploitation in the wild. EPSS estimates a 95.11% chance of exploitation in the next 30 days.

Description

Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring.

Metrics

CVSS 3.1

9.8/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

95.11%

99.9th percentile

Probability of exploitation in the next 30 days. Learn more

Exploitation Status

This vulnerability is listed in CISA’s Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. Federal agencies must remediate by Jun 2, 2023.

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Ruckuswireless	Ruckus Wireless Admin	<= 10.4
Ruckuswireless	Smartzone Ap	< 6.1.0.0.9240
Ruckuswireless	Smartzone Ap	< 5.2.2.0.2064
Ruckuswireless	Smartzone Ap	< 3.6.2.0.795
Ruckuswireless	Smartzone Ap	< 6.1.1.0.1274
Commscope	Ruckus Smartzone Firmware	< 5.2.1.3
Commscope	Ruckus Smartzone Firmware	6.1.0.0.935
Commscope	Ruckus Smartzone Firmware	< 5.2.1.3.1695

References

https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthenticated-remote-code-execution-csrf-ssrf/Exploit, Third Party Advisory
https://support.ruckuswireless.com/security_bulletins/315Patch, Product, Vendor Advisory
https://cybir.com/2023/cve/proof-of-concept-ruckus-wireless-admin-10-4-unauthenticated-remote-code-execution-csrf-ssrf/Exploit, Third Party Advisory
https://support.ruckuswireless.com/security_bulletins/315Patch, Product, Vendor Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-25717US Government Resource

Timeline

Published: Feb 13, 2023
Last Modified: Jun 17, 2026
Status: Analyzed

Frequently Asked Questions

What is CVE-2023-25717?

Ruckus Wireless Admin through 10.4 allows Remote Code Execution via an unauthenticated HTTP GET Request, as demonstrated by a /forms/doLogin?login_username=admin&password=password$(curl substring.

How severe is CVE-2023-25717?

CVE-2023-25717 has a CVSS score of 9.8/10 (CRITICAL severity). The EPSS model estimates a 95.11% probability of exploitation in the next 30 days. This vulnerability is listed in CISA's Known Exploited Vulnerabilities catalog.

How do I fix CVE-2023-25717?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-25717?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST