Design/Logic Flaw

2023-04-2817:15:00

PRIOn knowledge base

www.prio-n.com

ubiquiti edgerouter x

critical vulnerability

web service

remote attack

denial of service

exploit disclosed

vulnerability identifier

nvd

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.7%

JSON

A vulnerability classified as critical has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Service. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-227655.

CPENameOperatorVersion
er-x-sfp_firmwarelt2.0.9
er-x-sfp_firmwareeq2.0.9 hotfix2
er-x-sfp_firmwareeq2.0.9 hotfix4
er-x-sfp_firmwareeq2.0.9 hotfix5
er-x-sfp_firmwareeq2.0.9
er-x-sfp_firmwareeq2.0.9 hotfix6
er-x-sfp_firmwareeq2.0.9 hotfix3
er-x_firmwarelt2.0.9
er-x_firmwareeq2.0.9 hotfix2
er-x_firmwareeq2.0.9 hotfix4

Name	Operator	Version
er-x-sfp_firmware	lt	2.0.9
er-x-sfp_firmware	eq	2.0.9 hotfix2
er-x-sfp_firmware	eq	2.0.9 hotfix4
er-x-sfp_firmware	eq	2.0.9 hotfix5
er-x-sfp_firmware	eq	2.0.9
er-x-sfp_firmware	eq	2.0.9 hotfix6
er-x-sfp_firmware	eq	2.0.9 hotfix3
er-x_firmware	lt	2.0.9
er-x_firmware	eq	2.0.9 hotfix2
er-x_firmware	eq	2.0.9 hotfix4