Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui edgemax firmware vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-31998
A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices.
Ui Edgemax Edgerouter Firmware 2.0.9
Ui Aircube Firmware
8.8
CVSSv3
CVE-2023-2373
A vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Management Interface. The manipulation of the argument ecn-up leads to command injection. It is possible to initiate the a...
Ui Edgemax Edgerouter Firmware
Ui Edgemax Edgerouter Firmware 2.0.9
8.8
CVSSv3
CVE-2022-43553
A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and previous versions) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later.
Ui Edgemax Edgerouter Firmware
Ui Edgemax Edgerouter Firmware 2.0.9
7.5
CVSSv3
CVE-2021-22909
A vulnerability found in EdgeMAX EdgeRouter V2.0.9 and previous versions could allow a malicious actor to execute a man-in-the-middle (MitM) attack during a firmware update. This vulnerability is fixed in EdgeMAX EdgeRouter V2.0.9-hotfix.1 and later.
Ui Edgemax Edgerouter Firmware
1 Github repository
8.8
CVSSv3
CVE-2020-8282
A security issue was found in EdgePower 24V/54V firmware v1.7.0 and previous versions where, due to missing CSRF protections, an attacker would have been able to perform unauthorized remote code execution.
Ui Edgemax Edgepower 24v Firmware
Ui Edgemax Edgepower 54v Firmware
9.8
CVSSv3
CVE-2020-8234
A vulnerability exists in The EdgeMax EdgeSwitch firmware <v1.9.1 where the EdgeSwitch legacy web interface SIDSSL cookie for admin can be guessed, enabling the malicious user to obtain high privileges and get a root shell by a Command injection.
Ui Edgemax Firmware
6.5
CVSSv3
CVE-2020-8232
An information disclosure vulnerability exists in EdgeMax EdgeSwitch firmware v1.9.0 that allowed read only users could obtain unauthorized information through SNMP community pages.
Ui Edgeswitch Firmware
7.5
CVSSv3
CVE-2019-16889
Ubiquiti EdgeMAX devices prior to 2.0.3 allow remote malicious users to cause a denial of service (disk consumption) because *.cache files in /var/run/beaker/container_file/ are created when providing a valid length payload of 249 characters or fewer to the beaker.session.id cook...
Ui Er-x Firmware
Ui Er-x-sfp Firmware
Ui Ep-r6 Firmware
Ui Erlite-3 Firmware
Ui Erpoe-5 Firmware
Ui Er-8 Firmware
Ui Erpro-8 Firmware
Ui Ep-r8 Firmware
Ui Er-4 Firmware
Ui Er-6p Firmware
Ui Er-12 Firmware
Ui Er-8-xg Firmware
2 Github repositories
4.9
CVSSv3
CVE-2019-5445
DoS in EdgeMAX EdgeSwitch before 1.8.2 allow an Admin user to Crash the SSH CLI interface by using crafted commands.
Ui Edgeswitch Firmware
7.2
CVSSv3
CVE-2019-5446
Command Injection in EdgeMAX EdgeSwitch before 1.8.2 allow an Admin user to execute commands as root.
Ui Edgeswitch Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »