Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui edgemax firmware vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-43553
A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and previous versions) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later.
Ui Edgemax Edgerouter Firmware
Ui Edgemax Edgerouter Firmware 2.0.9
8.8
CVSSv3
CVE-2023-2373
A vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Management Interface. The manipulation of the argument ecn-up leads to command injection. It is possible to initiate the a...
Ui Edgemax Edgerouter Firmware
Ui Edgemax Edgerouter Firmware 2.0.9
8.8
CVSSv3
CVE-2020-8282
A security issue was found in EdgePower 24V/54V firmware v1.7.0 and previous versions where, due to missing CSRF protections, an attacker would have been able to perform unauthorized remote code execution.
Ui Edgemax Edgepower 24v Firmware
Ui Edgemax Edgepower 54v Firmware
7.5
CVSSv3
CVE-2017-0938
Denial of Service attack in airMAX < 8.3.2 , airMAX < 6.0.7 and EdgeMAX < 1.9.7 allow malicious users to use the Discovery Protocol in amplification attacks.
Ui Airos
Ui Edgemax Firmware
9.8
CVSSv3
CVE-2020-8234
A vulnerability exists in The EdgeMax EdgeSwitch firmware <v1.9.1 where the EdgeSwitch legacy web interface SIDSSL cookie for admin can be guessed, enabling the malicious user to obtain high privileges and get a root shell by a Command injection.
Ui Edgemax Firmware
7.5
CVSSv3
CVE-2023-31998
A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices.
Ui Edgemax Edgerouter Firmware 2.0.9
Ui Aircube Firmware
7.5
CVSSv3
CVE-2021-22909
A vulnerability found in EdgeMAX EdgeRouter V2.0.9 and previous versions could allow a malicious actor to execute a man-in-the-middle (MitM) attack during a firmware update. This vulnerability is fixed in EdgeMAX EdgeRouter V2.0.9-hotfix.1 and later.
Ui Edgemax Edgerouter Firmware
1 Github repository
7.5
CVSSv3
CVE-2019-16889
Ubiquiti EdgeMAX devices prior to 2.0.3 allow remote malicious users to cause a denial of service (disk consumption) because *.cache files in /var/run/beaker/container_file/ are created when providing a valid length payload of 249 characters or fewer to the beaker.session.id cook...
Ui Er-x Firmware
Ui Er-x-sfp Firmware
Ui Ep-r6 Firmware
Ui Erlite-3 Firmware
Ui Erpoe-5 Firmware
Ui Er-8 Firmware
Ui Erpro-8 Firmware
Ui Ep-r8 Firmware
Ui Er-4 Firmware
Ui Er-6p Firmware
Ui Er-12 Firmware
Ui Er-8-xg Firmware
2 Github repositories
7.2
CVSSv3
CVE-2019-5446
Command Injection in EdgeMAX EdgeSwitch before 1.8.2 allow an Admin user to execute commands as root.
Ui Edgeswitch Firmware
4.9
CVSSv3
CVE-2019-5445
DoS in EdgeMAX EdgeSwitch before 1.8.2 allow an Admin user to Crash the SSH CLI interface by using crafted commands.
Ui Edgeswitch Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »