We’re aware of a vulnerability in the web-based management interface of the Ruckus Unleashed product line that could allow an authenticated, remote attacker to execute arbitrary code on the Ruckus Unleashed system to make changes when “gateway mode” is enabled.

Please note that schools who have had Ruckus equipment installed under Equipment Replacement shouldn’t be impacted.

For any hardware not installed under Equipment Replacement, a patch is available for currently supported models and we recommend upgrading to the latest version.

You can find more information on this patch and check devices impacted here.