CVE-2020-26878

HIGH EXPLOITED IN THE WILD

Ruckus <1.5.1.0.21 - Command Injection

Title source: llm

Description

Ruckus through 1.5.1.0.21 is affected by remote command injection. An authenticated user can submit a query to the API (/service/v1/createUser endpoint), injecting arbitrary commands that will be executed as root user via web.py.

Exploits (3)

github WORKING POC 11 stars

by X-C3LL · pythonpoc

https://github.com/X-C3LL/PoC-CVEs/tree/master/CVE-2020-26878 & CVE-2020-26879

View Code ZIP pw:eip

nomisec WORKING POC

by htarsoo · remote

https://github.com/htarsoo/CVE-2020-26878

View Code ZIP pw:eip

vulncheck_xdb WORKING POC

remote-auth

https://github.com/beyefendi/exploit

View Code ZIP pw:eip

References (6)

[Third Party Advisory] https://adepts.of0x.cc

[Exploit, Third Party Advisory] https://adepts.of0x.cc/ruckus-vriot-rce/

[Vendor Advisory] https://support.ruckuswireless.com/documents

[Product, Vendor Advisory] https://support.ruckuswireless.com/security_bulletins/305

[Third Party Advisory] https://twitter.com/TheXC3LL

[Third Party Advisory] https://x-c3ll.github.io

Scores

CVSS v3 8.8

EPSS 0.5495

EPSS Percentile 98.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

VulnCheck KEV 2022-06-28

InTheWild.io 2022-07-06

CWE

CWE-78

Status published

Products (1)

commscope/ruckus_vriot < 1.5.1.0.21

Published Oct 26, 2020

Tracked Since Feb 18, 2026