{"id":2110,"date":"2020-03-24T15:18:59","date_gmt":"2020-03-24T13:18:59","guid":{"rendered":"https:\/\/blog.3kgroup.ee:443\/?p=2110"},"modified":"2020-05-11T17:03:47","modified_gmt":"2020-05-11T14:03:47","slug":"zd-and-unleashed-security-vulnerabilities","status":"publish","type":"post","link":"https:\/\/blog.3kgroup.ee:443\/?p=2110&lang=en","title":{"rendered":"ZoneDirector and Unleashed   security vulnerabilities."},"content":{"rendered":"\n<p> A number of security vulnerabilities are found on the ZoneDirector and Unleashed product lines. Collectively, these vulnerabilities allow an attacker to perform the following actions: <\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Unauthenticated, remote code executions and unauthorized command line interface (CLI) and shell access <\/li><li>Command injections <\/li><li>Unauthenticated stack overflow <\/li><li>Unauthenticated arbitrary file writing <\/li><li>Server-Side Request Forgery (SSRF)  <\/li><\/ul>\n\n\n\n<p> Ruckus Networks is releasing the fix for these vulnerabilities through a software update. Because these are CRITICAL issues, all customers are strongly encouraged to apply the fix once available.  <\/p>\n\n\n\n<p> The following table describes the vulnerable products, software versions, and the recommended actions.  <\/p>\n\n\n\n<figure class=\"wp-block-image alignfull size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"669\" height=\"307\" src=\"https:\/\/blog.3kgroup.ee:443\/wp-content\/uploads\/2020\/03\/security_flaw_upgrade_.png\" alt=\"\" class=\"wp-image-2106\" srcset=\"https:\/\/blog.3kgroup.ee:443\/wp-content\/uploads\/2020\/03\/security_flaw_upgrade_.png 669w, https:\/\/blog.3kgroup.ee:443\/wp-content\/uploads\/2020\/03\/security_flaw_upgrade_-300x138.png 300w, https:\/\/blog.3kgroup.ee:443\/wp-content\/uploads\/2020\/03\/security_flaw_upgrade_-600x275.png 600w\" sizes=\"auto, (max-width: 669px) 100vw, 669px\" \/><\/figure>\n\n\n\n<p>We recommend strongly to apply filters to allow remote access only from trusted IP-s.<\/p>\n\n\n\n<p>The source announcement with detailed information:<\/p>\n\n\n\n<div class=\"wp-block-file\"><a href=\"https:\/\/blog.3kgroup.ee:443\/wp-content\/uploads\/2020\/03\/security_flaw_12-2019.pdf\">security_flaw_12-2019<\/a><a href=\"https:\/\/blog.3kgroup.ee:443\/wp-content\/uploads\/2020\/03\/security_flaw_12-2019.pdf\" class=\"wp-block-file__button\" download>Download<\/a><\/div>\n","protected":false},"excerpt":{"rendered":"<p>A number of security vulnerabilities are found on the ZoneDirector and Unleashed product lines. Please upgrade.<\/p>\n","protected":false},"author":5,"featured_media":1750,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[442],"tags":[293,295],"class_list":["post-2110","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-3k-support-services","tag-unleashed-en","tag-zonedirector-en"],"acf":[],"_links":{"self":[{"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=\/wp\/v2\/posts\/2110","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2110"}],"version-history":[{"count":1,"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=\/wp\/v2\/posts\/2110\/revisions"}],"predecessor-version":[{"id":2111,"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=\/wp\/v2\/posts\/2110\/revisions\/2111"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=\/wp\/v2\/media\/1750"}],"wp:attachment":[{"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2110"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2110"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.3kgroup.ee:443\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2110"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}