Vulnerability Database

Published: Aug 4, 2025
Updated: Nov 4, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2025-44961" target="_blank" rel="noopener"> CVE-2025-44961
Severity: Critical
Exploit:

300,445

Total vulnerabilities in the database

In RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build, OS command injection can occur via an IP address field provided by an authenticated user.

CVSS v3:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
commscope / ruckus_smartzone_firmware	-	6.1.2
commscope / ruckus_smartzone_firmware	6.1.2	6.1.2.x
commscope / ruckus_smartzone_firmware	6.1.2-p2	6.1.2-p2.x
commscope / ruckus_smartzone_firmware	6.1.2-p3	6.1.2-p3.x
commscope / ruckus_smartzone_firmware	7.0.0	7.0.0.x
commscope / ruckus_smartzone_firmware	7.1.0	7.1.0.x
commscope / ruckus_network_director	-	4.5.0.51

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.