← Back to CVEs
CVE-2023-7338
HIGH7.5
Description
Ruckus Unleashed contains a remote code execution vulnerability in the web-based management interface that allows authenticated remote attackers to execute arbitrary code on the system when gateway mode is enabled. Attackers can exploit this vulnerability by sending specially crafted requests through the management interface to achieve arbitrary code execution on affected systems.
CVE Details
CVSS v3.1 Score7.5
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityHIGH
Privileges RequiredLOW
User InteractionNONE
Published3/26/2026
Last Modified3/30/2026
Sourcenvd
Honeypot Sightings0
Weaknesses (CWE)
CWE-78
References
https://support.ruckuswireless.com/security_bulletins/320(disclosure@vulncheck.com)
https://www.vulncheck.com/advisories/ruckus-unleashed-authenticated-rce-in-gateway-mode(disclosure@vulncheck.com)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.