Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sz vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-36630
DDOS reflection amplification vulnerability in eAut module of Ruckus Wireless SmartZone controller that allows remote malicious users to perform DOS attacks via crafted request.
Ruckuswireless Sz-300 Firmware
Ruckuswireless Sz-144 Firmware
Ruckuswireless Sz-100 Firmware
Ruckuswireless Vsz Firmware
1 Github repository
9.1
CVSSv3
CVE-2018-11036
Ruckus SmartZone (formerly Virtual SmartCell Gateway or vSCG) 3.5.0, 3.5.1, 3.6.0, and 3.6.1 (Essentials and High Scale) on vSZ, SZ-100, SZ-300, and SCG-200 devices allows remote malicious users to obtain sensitive information or modify data.
Ruckuswireless Vsz Firmware 3.6.0
Ruckuswireless Vsz Firmware 3.5.0
Ruckuswireless Vsz Firmware 3.5.1
Ruckuswireless Vsz Firmware 3.6.1
Ruckuswireless Scg-200 Firmware 3.6.1
Ruckuswireless Scg-200 Firmware 3.5.0
Ruckuswireless Scg-200 Firmware 3.5.1
Ruckuswireless Scg-200 Firmware 3.6.0
Ruckuswireless Sz-300 Firmware 3.5.0
Ruckuswireless Sz-300 Firmware 3.5.1
Ruckuswireless Sz-300 Firmware 3.6.0
Ruckuswireless Sz-300 Firmware 3.6.1
Ruckuswireless Sz-100 Firmware 3.6.1
Ruckuswireless Sz-100 Firmware 3.5.0
Ruckuswireless Sz-100 Firmware 3.5.1
Ruckuswireless Sz-100 Firmware 3.6.0
5.4
CVSSv3
CVE-2018-20370
SZ NetChat prior to 7.9 has XSS in the MyName input field of the Options module. Attackers are able to inject commands to compromise the enabled HTTP server web frontend.
The-sz Netchat
7.5
CVSSv3
CVE-2022-24187
The user_id and device_id on the Ourphoto App version 1.4.1 /device/* end-points both suffer from insecure direct object reference vulnerabilities. Other end-users user_id and device_id values can be enumerated by incrementing or decrementing id numbers. The impact of this vulner...
Sz-fujia Ourphoto 1.4.1
7.5
CVSSv3
CVE-2022-24188
The /device/signin end-point for the Ourphoto App version 1.4.1 discloses clear-text password information for functionality within the picture frame devices. The deviceVideoCallPassword and mqttPassword are returned in clear-text. The lack of sessions management and presence of i...
Sz-fujia Ourphoto 1.4.1
6.5
CVSSv3
CVE-2022-24189
The user_token authorization header on the Ourphoto App version 1.4.1 /apiv1/* end-points is not implemented properly. Removing the value causes all requests to succeed, bypassing authorization and session management. The impact of this vulnerability allows an attacker POST api c...
Sz-fujia Ourphoto 1.4.1
7.5
CVSSv3
CVE-2022-24190
The /device/acceptBind end-point for Ourphoto App version 1.4.1 does not require authentication or authorization. The user_token header is not implemented or present on this end-point. An attacker can send a request to bind their account to any users picture frame, then send a PO...
Sz-fujia Ourphoto 1.4.1
9.1
CVSSv3
CVE-2020-22657
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 (SCG200) prior to 3.6.2.0.795, SmartZone 100 (SZ-100) prior to 3.6.2.0.795, SmartZone 300 (SZ300)...
Ruckuswireless R310 Firmware 10.5.1.0.199
Ruckuswireless R500 Firmware 10.5.1.0.199
Ruckuswireless R600 Firmware 10.5.1.0.199
Ruckuswireless T300 Firmware 10.5.1.0.199
Ruckuswireless T301n Firmware 10.5.1.0.199
Ruckuswireless T301s Firmware 10.5.1.0.199
Ruckuswireless Scg200 Firmware
Ruckuswireless Sz-100 Firmware
Ruckuswireless Sz-300 Firmware
Ruckuswireless Vsz Firmware
Ruckuswireless Zonedirector 1100 Firmware 9.10.2.0.130
Ruckuswireless Zonedirector 1200 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 3000 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 5000 Firmware 10.0.1.0.151
9.8
CVSSv3
CVE-2020-22653
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 (SCG200) prior to 3.6.2.0.795, SmartZone 100 (SZ-100) prior to 3.6.2.0.795, SmartZone 300 (SZ300)...
Ruckuswireless R310 Firmware 10.5.1.0.199
Ruckuswireless R500 Firmware 10.5.1.0.199
Ruckuswireless R600 Firmware 10.5.1.0.199
Ruckuswireless T300 Firmware 10.5.1.0.199
Ruckuswireless T301n Firmware 10.5.1.0.199
Ruckuswireless T301s Firmware 10.5.1.0.199
Ruckuswireless Scg200 Firmware
Ruckuswireless Sz-100 Firmware
Ruckuswireless Sz-300 Firmware
Ruckuswireless Vsz Firmware
Ruckuswireless Zonedirector 1100 Firmware 9.10.2.0.130
Ruckuswireless Zonedirector 1200 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 3000 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 5000 Firmware 10.0.1.0.151
9.8
CVSSv3
CVE-2020-22654
In Ruckus R310 10.5.1.0.199, Ruckus R500 10.5.1.0.199, Ruckus R600 10.5.1.0.199, Ruckus T300 10.5.1.0.199, Ruckus T301n 10.5.1.0.199, Ruckus T301s 10.5.1.0.199, SmartCell Gateway 200 (SCG200) prior to 3.6.2.0.795, SmartZone 100 (SZ-100) prior to 3.6.2.0.795, SmartZone 300 (SZ300)...
Ruckuswireless R310 Firmware 10.5.1.0.199
Ruckuswireless R500 Firmware 10.5.1.0.199
Ruckuswireless R600 Firmware 10.5.1.0.199
Ruckuswireless T300 Firmware 10.5.1.0.199
Ruckuswireless T301n Firmware 10.5.1.0.199
Ruckuswireless T301s Firmware 10.5.1.0.199
Ruckuswireless Scg200 Firmware
Ruckuswireless Sz-100 Firmware
Ruckuswireless Sz-300 Firmware
Ruckuswireless Vsz Firmware
Ruckuswireless Zonedirector 1100 Firmware 9.10.2.0.130
Ruckuswireless Zonedirector 1200 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 3000 Firmware 10.2.1.0.218
Ruckuswireless Zonedirector 5000 Firmware 10.0.1.0.151
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »