Remote Code Execution Vulnerability in Ruckus Unleashed Management Interface
CVE-2023-7338

7.7HIGH

Key Information:

Vendor: Ruckus Networks
Status: Ruckus H350; Ruckus H550; Ruckus R350; Ruckus R550
Vendor: CVE Published:; 26 March 2026

🔔 Create Ruckus Networks Vulnerability Alert

What is CVE-2023-7338?

Ruckus Unleashed features a security flaw within its web-based management interface, allowing authenticated attackers in gateway mode to perform remote code execution. By crafting and sending specific requests to the interface, attackers can execute arbitrary code, potentially compromising the system's integrity and security. Organizations using affected versions should address this vulnerability promptly to safeguard their networks.

Affected Version(s)

Ruckus C110 unknown

Ruckus E510 unknown

Ruckus H320 unknown

References

https://support.ruckuswireless.com/security_bulletins/320

vendor-advisory

https://www.vulncheck.com/advisories/ruckus-unleashed-aut...

third-party-advisory

CVSS V4

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 26, 2026
Vulnerability Reserved
Mar 23, 2026

CVE-2023-7338 Data

JSON