Secure Boot Vulnerability in Ruckus Wireless Products
CVE-2020-22656

7.5HIGH

Key Information:

Vendor: Ruckuswireless
Status: R310 Firmware
Vendor: CVE Published:; 20 January 2023

Summary

The vulnerability found in various Ruckus Wireless products exposes a potential risk where attackers can manipulate the Secure Boot state, resulting in unauthorized access or failure to verify the integrity of the operating environment. This flaw affects multiple models and versions, making it critical for users to apply available patches to safeguard their network devices from potential exploitation.

References

https://support.ruckuswireless.com/security_bulletins/302

https://hdhrmi.blogspot.com/2020/03/multiple-vulnerabilit...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 20, 2023
Vulnerability Reserved
Aug 13, 2020