Security

Please note this important new Security Bulletin.

The Ruckus Product Security Team is responsible for researching, analyzing and responding to security incident reports related to Ruckus products. This team is the first point of contact for all security incident reports and works directly with Ruckus customers, security researchers, government organizations, consultants, industry security organizations, and other vendors to identify security issues with Ruckus products. This team is also responsible for publishing security advisories and communicating with outside entities regarding mitigation steps for addressing particular security issues with Ruckus products.

Reporting a Security Issue to Ruckus

Ruckus encourages individuals and organizations to report all Ruckus-related product related vulnerabilities and security issues directly to Ruckus via our email alias: #RuckusNetworkSecurity@commscope.com.

A link to the Ruckus Security Incident Response Policy is available here.

Please provide a detailed description of the issue along with sufficient information to reasonably enable Ruckus to reproduce the issue. Please also include a technical contact, list of Ruckus products affected and any other helpful information such as logs and console messages etc.

If you are a currently experiencing a network outage or need help configuring a security feature, please contact Ruckus via any of the contact methods listed on our Contact page.

Security Bulletins

try NEW advanced search
ID Title Version Release Date Edit Date
20180105 Spectre and Meltdown Vulnerabilities - (CVE-2017-5753 CVE-2017-5715 CVE-2017-5754) 1.1 January 5, 2018 January 16, 2018
112717 Multiple Vulnerabilities in DNSMASQ (CVE-2017-14491, CVE-2017-14492, CVE-2017-14493, CVE-2017-14494, CVE-2017-14495, CVE-2017-14496, CVE-2017-13704, CVE-2015-3294) 1 November 27, 2017 November 27, 2017
101717 Multiple Vulnerabilities discovered in RSA key generation within Infineon TPM 1 October 17, 2017 October 17, 2017
101617 Multiple Vulnerabilities discovered in 4-way handshake of WPA2 protocols - (KRACK: CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13084, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088) 1.12 October 16, 2017 December 21, 2017
092917 Authenticated Root Command Injection Vulnerabilities in Web-GUI of Ruckus Zone Director Controller and Unleashed APs (CVE-2017-6223, CVE-2017-6224) 1 September 29, 2017 September 29, 2017
BSA-2017-381 CVE-2017-7522 August 25, 2017 August 25, 2017
BSA-2017-380 CVE-2017-7521 August 25, 2017 August 25, 2017
BSA-2017-379 CVE-2017-7520 August 25, 2017 August 25, 2017
BSA-2017-378 CVE-2017-7508 August 25, 2017 August 25, 2017
BSA-2017-377 CVE-2017-9788 August 25, 2017 October 27, 2017
BSA-2017-376 CVE-2017-9789 August 25, 2017 October 27, 2017
BSA-2017-375 CVE-2017-7645 August 25, 2017 October 27, 2017
BSA-2017-373 CVE-2017-8797 August 25, 2017 October 27, 2017
BSA-2017-372 CVE-2016-7046 August 25, 2017 October 27, 2017
BSA-2017-371 CVE-2007-4752 August 25, 2017 August 25, 2017
BSA-2017-370 CVE-2017-9445 August 25, 2017 October 27, 2017
BSA-2017-365 CVE-2017-7679 August 25, 2017 August 25, 2017
BSA-2017-364 CVE-2017-7668 August 25, 2017 August 25, 2017
BSA-2017-363 CVE-2017-7659 August 25, 2017 August 25, 2017
BSA-2017-362 CVE-2017-3169 August 25, 2017 August 25, 2017
BSA-2017-361 CVE-2017-3167 August 25, 2017 August 25, 2017
BSA-2017-360 CVE-2017-1000365 August 25, 2017 October 27, 2017
BSA-2017-359 CVE-2017-1000371 August 25, 2017 October 27, 2017
BSA-2017-358 CVE-2017-1000370 August 25, 2017 October 27, 2017
BSA-2017-355 CVE-2017-1000366 August 25, 2017 October 27, 2017
BSA-2017-354 CVE-2017-9077 August 25, 2017 October 27, 2017
BSA-2017-353 CVE-2017-9076 August 25, 2017 October 27, 2017
BSA-2017-352 CVE-2017-9075 August 25, 2017 October 27, 2017
BSA-2017-351 CVE-2017-8890 August 25, 2017 October 27, 2017
072817 Vulnerabilities updates for RC4(CVE-2013-2566, CVE-2015-2808), SWEET32 (CVE-2016-2183) and SSL certificate signed using weak hashing algorithm (CVE-2004-2761) 1 July 28, 2017 July 28, 2017

Working...Please wait

This is here to prevent you from accidentally submitting twice.

The page will automatically refresh.