cvedb.io
CVE-2017-6224
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2017-10-13T17:29:01.160 · Last modified 2026-06-17T01:21:59.217

Summary

Ruckus Wireless Zone Director Controller firmware releases ZD9.x, ZD10.0.0.x, ZD10.0.1.x (less than 10.0.1.0.17 MR1 release) and Ruckus Wireless Unleashed AP Firmware releases 200.0.x, 200.1.x, 200.2.x, 200.3.x, 200.4.x. contain OS Command Injection vulnerabilities that could allow local authenticated users to execute arbitrary privileged commands on the underlying operating system by appending those commands in the Common Name field in the Certificate Generation Request.

Affected products

ruckuswireless — zonedirector_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when ruckuswireless ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.