Home / exploits CommScope Ruckus IoT Controller 1.7.1.0 Unauthenticated API Endpoints
Posted on 27 May 2021
Three API endpoints for the IoT Controller are accessible without authentication. Two of the endpoints result in information leakage and consumption of computing/storage resources. The third API endpoint that does not require authentication allows for a factory reset of the IoT Controller.