Skip to main content

Edgeswitch Firmware

6 CVEs product

Monthly

CVE-2020-8233 HIGH PATCH This Week

A command injection vulnerability exists in EdgeSwitch firmware <v1.9.0 that allowed an authenticated read-only user to execute arbitrary shell commands over the HTTP interface, allowing them to. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Command Injection Edgeswitch Firmware Backports Sle Leap
NVD
CVSS 3.1
8.8
EPSS
4.4%
CVE-2020-8232 MEDIUM PATCH This Month

An information disclosure vulnerability exists in EdgeMax EdgeSwitch firmware v1.9.0 that allowed read only users could obtain unauthorized information through SNMP community pages. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Edgeswitch Firmware
NVD
CVSS 3.1
6.5
EPSS
1.7%
CVE-2019-5446 HIGH This Week

Command Injection in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to execute commands as root. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Edgeswitch Firmware
NVD
CVSS 3.1
7.2
EPSS
2.7%
CVE-2019-5445 MEDIUM This Month

DoS in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to Crash the SSH CLI interface by using crafted commands. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Edgeswitch Firmware
NVD
CVSS 3.1
4.9
EPSS
1.3%
CVE-2018-12591 HIGH This Week

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an improperly neutralized element in an OS command due to lack of protection on the admin CLI, leading to code execution and privilege. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation RCE Ubiquiti Command Injection Edgeswitch Firmware
NVD
CVSS 3.0
7.2
EPSS
1.9%
CVE-2018-12590 HIGH This Week

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an externally controlled format-string vulnerability due to lack of protection on the admin CLI, leading to code execution and. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation RCE Ubiquiti Edgeswitch Firmware
NVD
CVSS 3.1
7.2
EPSS
1.7%
EPSS 4% CVSS 8.8
HIGH PATCH This Week

A command injection vulnerability exists in EdgeSwitch firmware <v1.9.0 that allowed an authenticated read-only user to execute arbitrary shell commands over the HTTP interface, allowing them to. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Command Injection Edgeswitch Firmware Backports Sle +1
NVD
EPSS 2% CVSS 6.5
MEDIUM PATCH This Month

An information disclosure vulnerability exists in EdgeMax EdgeSwitch firmware v1.9.0 that allowed read only users could obtain unauthorized information through SNMP community pages. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Edgeswitch Firmware
NVD
EPSS 3% CVSS 7.2
HIGH This Week

Command Injection in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to execute commands as root. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Edgeswitch Firmware
NVD
EPSS 1% CVSS 4.9
MEDIUM This Month

DoS in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to Crash the SSH CLI interface by using crafted commands. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Edgeswitch Firmware
NVD
EPSS 2% CVSS 7.2
HIGH This Week

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an improperly neutralized element in an OS command due to lack of protection on the admin CLI, leading to code execution and privilege. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation RCE Ubiquiti +2
NVD
EPSS 2% CVSS 7.2
HIGH This Week

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an externally controlled format-string vulnerability due to lack of protection on the admin CLI, leading to code execution and. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation RCE Ubiquiti +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy