A reflected Cross site scripting (XSS) vulnerability in Ruckus Unleashed 200.13.6.1.319 via the name parameter to the the captive-portal endpoint selfguestpass/guestAccessSubmit.jsp.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| ruckusnetworks | unleashed_r670_firmware | 200.13.6.1.319 |
| ruckuswireless | ruckus_unleashed | 200.13.6.1.319 |
| ruckusnetworks | unleashed_t750se_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_r370_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_r650_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_r750_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_r350e_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_h550_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_r770_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_r850_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_h350_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_r350_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_t670sn_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_r550_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_t350c_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_t670_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_t750_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_t350se_firmware | 200.13.6.1.319 |
| ruckusnetworks | unleashed_t350d_firmware | 200.13.6.1.319 |