216.73.217.22

CVE-2025-69426

· Published 09/01/2026 17:15 · Modified 09/01/2026 17:15

Labels: CVE-2025-69426 2026-01-09CVE-2025-69426CWE-732[email protected]

Essential information

Published
09/01/2026 17:15
Modified
09/01/2026 17:15
Author
Creator
CVSS
10.0 CRITICAL (v3) 10.0 CRITICAL (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

The Ruckus vRIoT IoT Controller firmware versions prior to 3.0.0.0 (GA) contain hardcoded credentials for an operating system user account within an initialization script. The SSH service is network-accessible without IP-based restrictions. Although the configuration disables SCP and pseudo-TTY allocation, an attacker can authenticate using the hardcoded credentials and establish SSH local port forwarding to access the Docker socket. By mounting the host filesystem via Docker, an attacker can escape the container and execute arbitrary OS commands as root on the underlying vRIoT controller, resulting in complete system compromise.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
ruckus / vriot iot controller cpe:2.3:a:ruckus:vriot_iot_controller:<3.0.0.0:*:*:*:*:*:*:*

References