CVE-2025-44954 PUBLISHED

Assigner: mitre
Reserved: 22.04.2025 Published: 04.08.2025 Updated: 05.08.2025

RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
CVSS Score: 9

Product Status

Vendor RUCKUS
Product SmartZone
Versions Default: unknown
  • affected from 0 to 6.1.2p3 Refresh Build (excl.)

References

Problem Types

  • CWE-1394 Use of Default Cryptographic Key CWE