CVE-2025-46117 – An issue was discovered in CommScope Ruckus Unleas

July 21, 2025

CVE ID : CVE-2025-46117

Published : July 21, 2025, 3:15 p.m. | 8 hours, 59 minutes ago

Description : An issue was discovered in CommScope Ruckus Unleashed prior to 200.15.6.212.14 and 200.17.7.0.139, and in Ruckus ZoneDirector prior to 10.5.1.0.279, where a hidden debug script `.ap_debug.sh` invoked from the restricted CLI does not properly sanitize its input, allowing an authenticated attacker to execute arbitrary commands as root on the controller or specified target.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-36845 – An issue was discovered in Eveo URVE Web Manager 2

Next Article CVE-2025-46116 – An issue was discovered in CommScope Ruckus Unleas

Highlights

CVE-2025-37886 – Linux Kernel PDS Core Use-After-Free Buffer Overflow

May 9, 2025

CVE ID : CVE-2025-37886

Published : May 9, 2025, 7:16 a.m. | 4 hours, 51 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

pds_core: make wait_context part of q_info

Make the wait_context a full part of the q_info struct rather
than a stack variable that goes away after pdsc_adminq_post()
is done so that the context is still available after the wait
loop has given up.

There was a case where a slow development firmware caused
the adminq request to time out, but then later the FW finally
finished the request and sent the interrupt. The handler tried
to complete_all() the completion context that had been created
on the stack in pdsc_adminq_post() but no longer existed.
This caused bad pointer usage, kernel crashes, and much wailing
and gnashing of teeth.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Tenable updates Vulnerability Priority Rating scoring method to flag fewer vulnerabilities as critical

Google adds updated workspace templates in Firebase Studio that leverage new Agent mode

AI and its impact on the developer experience, or ‘where is the joy?’

Google launches OSS Rebuild tool to improve trust in open source packages

EcoFlow’s new portable battery stations are lighter and more powerful (DC plug included)

7 ways Linux can save you money

My favorite Kindle tablet just got a kids model, and it makes so much sense

You can turn your Google Photos into video clips now – here’s how

Blade Service Injection: Direct Service Access in Laravel Templates

Blade Service Injection: Direct Service Access in Laravel Templates

This Week in Laravel: NativePHP Mobile and AI Guidelines from Spatie

Retrieve the Currently Executing Closure in PHP 8.5

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

FOSS Weekly #25.30: AUR Poisoned, Linux Rising, PPA Explained, New Open Source Grammar Checker and More

How to Open Control Panel in Windows 11

How to Shut Down Windows 11

CVE-2025-46117 – An issue was discovered in CommScope Ruckus Unleas

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

Hackers Deploy Stealth Backdoor in WordPress Mu-Plugins to Maintain Admin Access

Type mismatch: cannot convert from void to String [closed]

Top 10 Game-Changing App Ideas Built with React Native🚀

Raspberry Pi Imager 1.9.4 Released with Various Changes

Your data’s probably not ready for AI – here’s how to make it trustworthy

CVE-2025-37886 – Linux Kernel PDS Core Use-After-Free Buffer Overflow

CVE-2025-7692 – SolarWinds Orion WordPress SMS Authentication Bypass Vulnerability

Microsoft saved $500 million using AI — after slashing over 15,000 jobs in 2025

CVE-2025-37799 – vmxnet3 Linux Kernel Malformed Packet Sizing Vulnerability

CVE-2025-46117 – An issue was discovered in CommScope Ruckus Unleas

Related Posts