CVE-2021-33216

CRITICAL

CommScope Ruckus IoT Controller <1.7.1.0 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-33216. PoCs published by ub3rsick.

AI-analyzed exploit summary This advisory details an undocumented account ('vriotiotupgrade') in CommScope Ruckus IoT Controller with hard-coded SSH keys, allowing SCP access. It also references additional vulnerabilities in rssh (CVE-2019-1000018, etc.).

Description

An issue was discovered in CommScope Ruckus IoT Controller 1.7.1.0 and earlier. An Undocumented Backdoor exists, allowing shell access via a developer account.

Exploits (1)

exploitdb WRITEUP

by ub3rsick · textlocalhardware

https://www.exploit-db.com/exploits/52242

View Code ZIP pw:eip

This advisory details an undocumented account ('vriotiotupgrade') in CommScope Ruckus IoT Controller with hard-coded SSH keys, allowing SCP access. It also references additional vulnerabilities in rssh (CVE-2019-1000018, etc.).

Classification

Writeup 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: CommScope Ruckus IoT Controller 1.7.1.0 and earlier

No auth needed

Prerequisites: Access to the VMDK file or the running appliance

MITRE ATT&CK

T1078 - Valid Accounts T1098 - Account Manipulation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory x_refsource_misc

https://korelogic.com/advisories.html

Mailing List, Third Party Advisory x_refsource_misc

http://seclists.org/fulldisclosure/2021/May/78

Scores

CVSS v3 9.8

EPSS 0.3468

EPSS Percentile 97.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (1)

commscope/ruckus_iot_controller < 1.7.1.0

Published Jul 07, 2021

Tracked Since Feb 18, 2026