CVE-2025-44960
Published: 04 August 2025
Summary
CVE-2025-44960 is a high-severity OS Command Injection (CWE-78) vulnerability in Commscope Ruckus Smartzone Firmware. Its CVSS base score is 8.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 49.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).
Threat & Defense at a Glance
Threat & Defense Details
Mitigating Controls (NIST 800-53 r5)AI
Directly mitigates OS command injection by requiring validation and sanitization of untrusted API parameters to prevent arbitrary command execution.
Addresses the vulnerability comprehensively by mandating timely installation of vendor patches, such as RUCKUS SmartZone 6.1.2p3 Refresh Build, to remediate the input sanitization flaw.
Reduces impact of successful command injection by enforcing least privilege on low-privileged API users, limiting the scope of executed commands despite potential privilege escalation.
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Unauthenticated OS command injection via API parameter enables remote exploitation of the management application (T1190/T1210) to execute arbitrary Unix shell commands (T1059.004).
NVD Description
RUCKUS SmartZone (SZ) before 6.1.2p3 Refresh Build allows OS command injection via a certain parameter in an API route.
Deeper analysisAI
CVE-2025-44960 is an OS command injection vulnerability (CWE-78) affecting RUCKUS SmartZone (SZ) controllers in versions before 6.1.2p3 Refresh Build. The flaw arises from inadequate sanitization of a certain parameter in an API route, enabling attackers to inject and execute arbitrary operating system commands. It carries a CVSS v3.1 base score of 8.5 (High), reflecting network accessibility (AV:N), high attack complexity (AC:H), low privilege requirements (PR:L), no user interaction (UI:N), changed scope (S:C), and high impacts on confidentiality, integrity, and availability (C:I:A:H).
An attacker with low-privileged access, such as an authenticated user with limited permissions, can exploit this vulnerability over the network by crafting a malicious request to the affected API route. Despite the high attack complexity, successful exploitation allows execution of arbitrary OS commands with elevated privileges, potentially leading to full system compromise, data exfiltration, modification of critical configurations, or denial of service on the RUCKUS SmartZone controller.
Mitigation details are outlined in vendor and third-party advisories, including the CommScope security advisory (ID 20250710), CERT vulnerability note VU#613753, and Claroty Team82 disclosure dashboard. Security practitioners should consult these resources for patch availability, such as upgrading to RUCKUS SmartZone 6.1.2p3 Refresh Build or later, and any interim workarounds.
Details
- CWE(s)