This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Unleased 200.13.6.1.319 - Dropbear CVE-2020-36254 - False Positive or Mitigated?

al_butler_gvr54
New Contributor

‎12-01-2022 07:03 AM

Unleashed APs are being detected as vulnerable to CVE-2020-36254

Summary

  • Dropbear is mishandling the filename of . or an empty filename.

Vulnerability Detection Result

  • Installed version: 2018.76 Fixed version: 2020.79 Installation path / port: 22/tcp

Impact

  • Successful exploitation would allow an attacker to modify the permissions of the target directory on the client side.

Can someone advise if this is mitigated or a false positive?

0 Kudos
3 REPLIES 3

aalvarez6
RUCKUS Team Member

‎03-22-2023 01:12 PM - edited ‎03-22-2023 01:12 PM

Hello, 

Thank you for your question, I'm from the unleashed department. 

To answer your query, our APs should not be vulnerable to CVE-2020-36254. 

 

Best Regards,

Ayleth Alvarez | Sr Technical Support Engineer | TAC Wired

0 Kudos

sanjay_kumar
RUCKUS Team Member

‎03-22-2023 07:49 PM

Hi @al_butler_gvr54 
Could you please confirm the Unleashed version running on the APs?

0 Kudos

sanjay_kumar
RUCKUS Team Member
In response to sanjay_kumar

‎03-22-2023 09:45 PM

Hi @al_butler_gvr54 
Please ignore, as Ayleth confirmed, CVE-2020-36254 is not affected for our APs.

0 Kudos
Copyright © 2024 Khoros, LLC