CVE-2025-46116
published 2025-07-21CVE-2025-46116: An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139, and in Ruckus ZoneDirector prior to 10.5.1.0.279, where an…
PriorityP353high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
0.48%
38.1th percentile
An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139, and in Ruckus ZoneDirector prior to 10.5.1.0.279, where an authenticated attacker can disable the passphrase requirement for a hidden CLI command `!v54!` via a management API call and then invoke it to escape the restricted shell and obtain a root shell on the controller.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ruckuswireless | ruckus_unleashed | < 200.15.6.212.14 | 200.15.6.212.14 |
| ruckuswireless | ruckus_unleashed | >= 200.17 < 200.17.7.0.139 | 200.17.7.0.139 |
| ruckuswireless | ruckus_zonedirector | < 10.5.1.0.279 | 10.5.1.0.279 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-07-21
Published