Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistHackeroneCVELIST:CVE-2023-23912
HistoryFeb 09, 2023 - 12:00 a.m.

CVE-2023-23912

2023-02-0900:00:00
CWE-75
hackerone
www.cve.org
vulnerability
edgerouters
unifi security gateways
remote code execution
dhcpv6 prefix delegation

9.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.2%

JSON

A vulnerability, found in EdgeRouters Version 2.0.9-hotfix.5 and earlier and UniFi Security Gateways (USG) Version 4.4.56 and earlier with their DHCPv6 prefix delegation set to dhcpv6-stateless or dhcpv6-stateful, allows a malicious actor directly connected to the WAN interface of an affected device to create a remote code execution vulnerability.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Ubiquiti EdgeRouter(s) and USG(s)",
    "versions": [
      {
        "version": "EdgeRouter(s) Version 2.0.9-hotfix.6 or later and USG(s) to Version 4.4.57 or later",
        "status": "affected"
      }
    ]
  }
]

Related

prion 1
nvd 1
zdi 1
cve 1
prion
prion
Remote code execution
2023-02-09 20:15:00
nvd
nvd
CVE-2023-23912
2023-02-09 20:15:11
zdi
zdi
(Pwn2Own) Ubiquiti Networks EdgeOS dhcp6c Command Injection Remote Code Execution Vulnerability
2023-02-09 00:00:00
cve
cve
CVE-2023-23912
2023-02-09 20:15:11

9.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.2%

JSON
Related for CVELIST:CVE-2023-23912
prion1nvd1zdi1cve1