CVE-2025-44954
CRITICALDescription
RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build has a hardcoded SSH private key for a root-equivalent user account.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| commscope | ruckus_smartzone_firmware |
| commscope | ruckus_smartzone_firmware |
| commscope | ruckus_smartzone_firmware |
| commscope | ruckus_smartzone_firmware |
| commscope | ruckus_smartzone_firmware |
| commscope | ruckus_smartzone_firmware |
| commscope | ruckus_virtual_smartzone |
| commscope | ruckus_virtual_smartzone-federal |
| commscope | ruckus_c110 |
| commscope | ruckus_e510 |
| commscope | ruckus_h320 |
| commscope | ruckus_h350 |
| commscope | ruckus_h510 |
| commscope | ruckus_m510 |
| commscope | ruckus_r320 |
| commscope | ruckus_r510 |
| commscope | ruckus_r560 |
| commscope | ruckus_r610 |
| commscope | ruckus_r710 |
| commscope | ruckus_r720 |
| commscope | ruckus_r730 |
| commscope | ruckus_r750 |
| commscope | ruckus_smartzone_100 |
| commscope | ruckus_smartzone_100-d |
| commscope | ruckus_smartzone_144 |
| commscope | ruckus_smartzone_144-federal |
| commscope | ruckus_smartzone_300 |
| commscope | ruckus_smartzone_300-federal |
| commscope | ruckus_t310c |
| commscope | ruckus_t310d |
| commscope | ruckus_t310n |
| commscope | ruckus_t310s |
| commscope | ruckus_t350se |
| commscope | ruckus_t750 |
| commscope | ruckus_t750se |
References
Frequently Asked Questions
What is CVE-2025-44954? +
How severe is CVE-2025-44954? +
What products are affected by CVE-2025-44954? +
How do I check if I'm vulnerable to CVE-2025-44954? +
Related Vulnerabilities
Use of Default Cryptographic Key vulnerability in Baxter Welch Allyn Connex Spot Monitor may allow Configuration/Environment Manipulation.This issue affects Welch …
Sprecher Automations SPRECON-E-C, SPRECON-E-P, SPRECON-E-T3 is vulnerable to attack by an unauthorized remote attacker via default cryptographic keys. The use …
Serviceware Processes 6.0 through 7.3 before 7.4 allows attackers without valid authentication to send a specially crafted HTTP request to …
datahub-helm provides the Kubernetes Helm charts for deploying Datahub and its dependencies on a Kubernetes cluster. Starting in version 0.1.143 …
Use of Default Cryptographic Key (CWE-1394)
Sprecher Automations SPRECON-E series uses default cryptographic keys that allow an unprivileged remote attacker to access all encrypted communications, thereby …