Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Edgemax Security Vulnerabilities

cve
cve

CVE-2023-31998

A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said...

7.5CVSS

5.8AI Score

0.0005EPSS

2023-07-18 03:15 AM
23
cve
cve

CVE-2023-2373

A vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Management Interface. The manipulation of the argument ecn-up leads to command injection. It is possible to initiate the attack remotely....

8.8CVSS

9AI Score

0.001EPSS

2023-04-28 02:15 PM
21
cve
cve

CVE-2022-43553

A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and earlier) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and...

8.8CVSS

8.8AI Score

0.002EPSS

2022-12-05 10:15 PM
37
cve
cve

CVE-2021-22909

A vulnerability found in EdgeMAX EdgeRouter V2.0.9 and earlier could allow a malicious actor to execute a man-in-the-middle (MitM) attack during a firmware update. This vulnerability is fixed in EdgeMAX EdgeRouter V2.0.9-hotfix.1 and...

7.5CVSS

7.4AI Score

0.004EPSS

2021-05-27 12:15 PM
34
5
cve
cve

CVE-2020-8282

A security issue was found in EdgePower 24V/54V firmware v1.7.0 and earlier where, due to missing CSRF protections, an attacker would have been able to perform unauthorized remote code...

8.8CVSS

8.9AI Score

0.001EPSS

2020-12-14 08:15 PM
20
2
cve
cve

CVE-2020-8234

A vulnerability exists in The EdgeMax EdgeSwitch...

9.8CVSS

9.5AI Score

0.027EPSS

2020-08-21 09:15 PM
39
cve
cve

CVE-2019-5445

DoS in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to Crash the SSH CLI interface by using crafted...

4.9CVSS

5.1AI Score

0.001EPSS

2019-07-10 08:15 PM
125
cve
cve

CVE-2019-5446

Command Injection in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to execute commands as...

7.2CVSS

7.3AI Score

0.001EPSS

2019-07-10 08:15 PM
122
cve
cve

CVE-2019-5426

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated user can use the "local port forwarding" and "dynamic port forwarding" (SOCKS proxy) functionalities. Remote attackers without credentials can exploit this bug to access local services or forward traffic through the device if...

4.8CVSS

5.2AI Score

0.002EPSS

2019-04-10 06:29 PM
25
cve
cve

CVE-2019-5424

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, a privileged user can execute arbitrary shell commands over the SSH CLI interface. This allows to execute shell commands under the root...

8.8CVSS

8.9AI Score

0.001EPSS

2019-04-10 06:29 PM
21
cve
cve

CVE-2019-5425

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an authenticated user can execute arbitrary shell commands over the SSH interface bypassing the CLI interface, which allow them to escalate privileges to...

8.8CVSS

9AI Score

0.001EPSS

2019-04-10 06:29 PM
22
cve
cve

CVE-2017-0938

Denial of Service attack in airMAX < 8.3.2 , airMAX < 6.0.7 and EdgeMAX < 1.9.7 allow attackers to use the Discovery Protocol in amplification...

7.5CVSS

7.4AI Score

0.003EPSS

2019-02-12 10:29 PM
31