Critical
CVSS 9.0
Overview
RUCKUS Network Director (RND) before 4.5 allows spoofing of an administrator JWT by an attacker who knows the hardcoded value of a certain secret key.
CVE-2025-44963
RUCKUS Network Director (RND) before 4.5 allows spoofing of an administrator JWT...
Risk analysis
This vulnerability is rated 🔴 CRITICAL.
- CVSS: 9.0 (CRITICAL)
- Detected tags: jwt (tag impact: LOW)
Recommended actions:
- Use strong algorithms (HS256/RS256), rotate secrets, short expiries.