Subscribe via feed.

CommScope Ruckus IoT Controller 1.7.1.0 Unauthenticated API Endpoints

Posted by deepcore on May 28, 2021 – 7:31 pm

Three API endpoints for the IoT Controller are accessible without authentication. Two of the endpoints result in information leakage and consumption of computing/storage resources. The third API endpoint that does not require authentication allows for a factory reset of the IoT Controller.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »