Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In Ruckus Network Director (RND) < 4.5.0.54, the OVA appliance contains hardcoded credentials for the ruckus PostgreSQL database user. In the default configuration, the PostgreSQL service is accessible over the network on TCP port 5432. An attacker can use the hardcoded credentials to authenticate remotely, gaining superuser access to the database. This allows creation of administrative users for the web interface, extraction of password hashes, and execution of arbitrary OS commands.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
RUCKUS Network Director 安全漏洞
Vulnerability Description
RUCKUS Network Director是RUCKUS公司的一个无线网络监控软件。 Ruckus Network Director 4.5.0.54之前版本存在安全漏洞,该漏洞源于OVA设备包含硬编码的PostgreSQL数据库用户凭据,可能导致远程认证并获取超级用户访问权限。
CVSS Information
N/A
Vulnerability Type
N/A