{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2021-4474", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2026-03-23T17:39:23.925Z", "datePublished": "2026-03-26T19:28:25.096Z", "dateUpdated": "2026-03-26T19:57:52.098Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-26T19:28:25.096Z"}, "title": "Ruckus AP CLI Arbitrary File Read Allows Authenticated Remote File Access", "descriptions": [{"lang": "en", "value": "Ruckus Access Point products contain an arbitrary file read vulnerability in the command-line interface that allows authenticated remote attackers with administrative privileges to read arbitrary files from the underlying filesystem. Attackers can exploit this vulnerability to access sensitive information including configuration files, credentials, and system data stored on the device."}], "datePublic": "2021-01-08T00:00:00.000Z", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-552", "description": "CWE-552 Files or Directories Accessible to External Parties", "type": "CWE"}]}], "affected": [{"vendor": "Ruckus Wireless", "product": "RUCKUS Access Point", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"defaultStatus": "affected", "vendor": "Ruckus", "product": "RUCKUS Unleashed", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "affected", "vendor": "Ruckus", "product": "SmartZone 100 (SZ-100) (EOL)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "affected", "vendor": "Ruckus", "product": "SmartZone 100-D (SZ100-D) (EOL)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "affected", "vendor": "Ruckus", "product": "SmartZone 144 (SZ-144)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "affected", "vendor": "Ruckus", "product": "SmartZone 144-Dataplane (SZ144-D)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "affected", "vendor": "Ruckus", "product": "SmartZone 300 (SZ300) (EOL)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "affected", "vendor": "Ruckus", "product": "ZoneDirector 1200 (EOL)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "MEDIUM", "baseScore": 6.9, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"}}, {"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "NONE", "version": "3.1", "baseSeverity": "MEDIUM", "baseScore": 4.9, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"}}], "references": [{"url": "https://support.ruckuswireless.com/security_bulletins/306", "name": "Ruckus Security Bulletin 20210108", "tags": ["vendor-advisory"]}, {"url": "https://www.vulncheck.com/advisories/ruckus-ap-cli-arbitrary-file-read-allows-authenticated-remote-file-access", "tags": ["third-party-advisory"]}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 1.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-26T19:57:04.552286Z", "id": "CVE-2021-4474", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-26T19:57:52.098Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2021-4474", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-26T19:57:04.552286Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-26T19:57:12.924Z"}}], "cna": {"title": "Ruckus AP CLI Arbitrary File Read Allows Authenticated Remote File Access", "source": {"discovery": "UNKNOWN"}, "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 6.9, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 4.9, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Ruckus Wireless", "product": "RUCKUS Access Point", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Ruckus", "product": "RUCKUS Unleashed", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}], "defaultStatus": "affected"}, {"vendor": "Ruckus", "product": "SmartZone 100 (SZ-100) (EOL)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}], "defaultStatus": "affected"}, {"vendor": "Ruckus", "product": "SmartZone 100-D (SZ100-D) (EOL)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}], "defaultStatus": "affected"}, {"vendor": "Ruckus", "product": "SmartZone 144 (SZ-144)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}], "defaultStatus": "affected"}, {"vendor": "Ruckus", "product": "SmartZone 144-Dataplane (SZ144-D)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}], "defaultStatus": "affected"}, {"vendor": "Ruckus", "product": "SmartZone 300 (SZ300) (EOL)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}], "defaultStatus": "affected"}, {"vendor": "Ruckus", "product": "ZoneDirector 1200 (EOL)", "versions": [{"status": "affected", "version": "0", "versionType": "semver"}], "defaultStatus": "affected"}], "datePublic": "2021-01-08T00:00:00.000Z", "references": [{"url": "https://support.ruckuswireless.com/security_bulletins/306", "name": "Ruckus Security Bulletin 20210108", "tags": ["vendor-advisory"]}, {"url": "https://www.vulncheck.com/advisories/ruckus-ap-cli-arbitrary-file-read-allows-authenticated-remote-file-access", "tags": ["third-party-advisory"]}], "x_generator": {"engine": "Vulnogram 1.0.1"}, "descriptions": [{"lang": "en", "value": "Ruckus Access Point products contain an arbitrary file read vulnerability in the command-line interface that allows authenticated remote attackers with administrative privileges to read arbitrary files from the underlying filesystem. Attackers can exploit this vulnerability to access sensitive information including configuration files, credentials, and system data stored on the device."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-552", "description": "CWE-552 Files or Directories Accessible to External Parties"}]}], "providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-26T19:28:25.096Z"}}}, "cveMetadata": {"cveId": "CVE-2021-4474", "state": "PUBLISHED", "dateUpdated": "2026-03-26T19:57:52.098Z", "dateReserved": "2026-03-23T17:39:23.925Z", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "datePublished": "2026-03-26T19:28:25.096Z", "assignerShortName": "VulnCheck"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Ruckus Access Point products contain an arbitrary file read vulnerability in the command-line interface that allows authenticated remote attackers with administrative privileges to read arbitrary files from the underlying filesystem. Attackers can exploit this vulnerability to access sensitive information including configuration files, credentials, and system data stored on the device."}, {"lang": "es", "value": "Los productos Ruckus Access Point contienen una vulnerabilidad de lectura arbitraria de archivos en la interfaz de l\u00ednea de comandos que permite a atacantes remotos autenticados con privilegios administrativos leer archivos arbitrarios del sistema de archivos subyacente. Los atacantes pueden explotar esta vulnerabilidad para acceder a informaci\u00f3n sensible, incluyendo archivos de configuraci\u00f3n, credenciales y datos del sistema almacenados en el dispositivo."}], "id": "CVE-2021-4474", "lastModified": "2026-03-30T13:26:50.827", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 3.6, "source": "[email protected]", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.9, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "[email protected]", "type": "Secondary"}]}, "published": "2026-03-26T20:16:07.730", "references": [{"source": "[email protected]", "url": "https://support.ruckuswireless.com/security_bulletins/306"}, {"source": "[email protected]", "url": "https://www.vulncheck.com/advisories/ruckus-ap-cli-arbitrary-file-read-allows-authenticated-remote-file-access"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-552"}], "source": "[email protected]", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "product": "ruckus_unleashed", "vendor": "ruckus"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "SmartZone 100-D (SZ100-D) (EOL)", "source": "cna", "vendor": "Ruckus"}, "product": "smartzone_100-d_(sz100-d)_(eol)", "vendor": "ruckus"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "SmartZone 100 (SZ-100) (EOL)", "source": "cna", "vendor": "Ruckus"}, "product": "smartzone_100_(sz-100)_(eol)", "vendor": "ruckus"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "SmartZone 144-Dataplane (SZ144-D)", "source": "cna", "vendor": "Ruckus"}, "product": "smartzone_144-dataplane_(sz144-d)", "vendor": "ruckus"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "SmartZone 144 (SZ-144)", "source": "cna", "vendor": "Ruckus"}, "product": "smartzone_144_(sz-144)", "vendor": "ruckus"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "SmartZone 300 (SZ300) (EOL)", "source": "cna", "vendor": "Ruckus"}, "product": "smartzone_300_(sz300)_(eol)", "vendor": "ruckus"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "ZoneDirector 1200 (EOL)", "source": "cna", "vendor": "Ruckus"}, "product": "zonedirector_1200_(eol)", "vendor": "ruckus"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "RUCKUS Access Point", "source": "cna", "vendor": "Ruckus Wireless"}, "product": "ruckus_access_point", "vendor": "ruckuswireless"}], "analysis": {"en": {"generated_at": "2026-03-26T20:51:38.431412+00:00", "value": {"mitigation_remediation": ["Apply vendor firmware or software updates that fix the CLI read flaw.", "Limit CLI administrative access to trusted networks or specific IP addresses wherever possible.", "Enforce strong authentication mechanisms, including multi\u2011factor authentication, for all administrative credentials.", "Enable logging of CLI activity and regularly review logs for anomalous file\u2011read operations."], "summary": {"action": "Immediate patch", "impact": "Remote file read enabling confidentiality breach"}, "threat_synthesis": {"affected_systems": "Affected models include Ruckus Wireless RUCKUS Access Point, Ruckus Unleashed, SmartZone series devices such as SZ\u2011100, SZ\u2011144, and SZ\u2011300, and ZoneDirector 1200. The advisory does not specify firmware releases, so any current build of these listed products should be considered vulnerable.", "description_and_impact": "The flaw permits an authenticated administrator to read any file that the device\u2019s operating system can access via a command\u2011line interface. Access to arbitrary files can expose configuration settings, embedded credentials, and other privileged system data, elevating the risk of confidentiality loss. This weakness matches the established file\u2011read pattern identified as CWE\u2011552.", "risk_and_exploitability": "The vulnerability carries a medium severity rating. Exploitation demands administrative access to the CLI, which is remote but requires prior authentication. No public evidence of exploitation exists and the weakness is not listed in the CISA catalog of widely used exploits. Nonetheless, an attacker who has gained legitimate credentials can read sensitive files, creating a potent foothold for further compromise."}}}}, "created": "2026-03-27T08:33:09.096569+00:00", "updated": "2026-03-27T09:25:29.030882+00:00", "vendors": ["ruckus", "ruckus$PRODUCT$ruckus_unleashed", "ruckus$PRODUCT$smartzone_100-d_(sz100-d)_(eol)", "ruckus$PRODUCT$smartzone_100_(sz-100)_(eol)", "ruckus$PRODUCT$smartzone_144-dataplane_(sz144-d)", "ruckus$PRODUCT$smartzone_144_(sz-144)", "ruckus$PRODUCT$smartzone_300_(sz300)_(eol)", "ruckus$PRODUCT$zonedirector_1200_(eol)", "ruckuswireless", "ruckuswireless$PRODUCT$ruckus_access_point"]}