CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Management Interface. The manipulation of the argument ecn-up leads to command injection. It is possible to initiate the attack remotely. T...

8.8CVSS7.5AI score0.13734EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:33 a.m.•2 views

CVE-2023-1458

A vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknown functionality of the component OSPF Handler. The manipulation of the argument area leads to command injection. The attack can be launched remotely. The...

9.8CVSS7.7AI score0.08616EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 1:53 a.m.•6 views

CVE-2023-2374

A vulnerability has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6 and classified as critical. This vulnerability affects unknown code of the component Web Management Interface. The manipulation of the argument ecn-down leads to command injection. The attack can be initiated remotely. T...

8.8CVSS7.6AI score0.01196EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 1:50 a.m.•2 views

CVE-2023-2377

A vulnerability was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Web Management Interface. The manipulation of the argument name leads to command injection. The attack can be...

8.8CVSS7.5AI score0.13734EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 1:48 a.m.•7 views

CVE-2023-2375

A vulnerability was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6 and classified as critical. This issue affects some unknown processing of the component Web Management Interface. The manipulation of the argument src leads to command injection. The attack may be initiated remotely. The...

8.8CVSS7.5AI score0.07596EPSS

Exploits2References1

Positive Technologies•added 2023/05/01 12:0 a.m.•2 views

PT-2023-3998 · Ubiquiti · Edgerouter X +1

Name of the Vulnerable Software and Affected Versions: Ubiquiti EdgeRouter versions prior to 2.0.9-hotfix.7 Ubiquiti AirCube versions prior to 2.8.9 Description: A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices. The...

7.5CVSS7.9AI score0.00425EPSS

Exploits0References14

OSV•added 2023/04/28 5:15 p.m.•0 views

CVE-2023-2379

A vulnerability classified as critical has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Service. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

7.5CVSS5.2AI score

Exploits0References3

NVD•added 2023/04/28 5:15 p.m.•10 views

CVE-2023-2379

7.8CVSS7.6AI score0.00468EPSS

Exploits1References3

Prion•added 2023/04/28 5:15 p.m.•13 views

Design/Logic Flaw

7.8CVSS7.5AI score0.00468EPSS

Exploits1References3Affected Software2

Cvelist•added 2023/04/28 4:31 p.m.•12 views

CVE-2023-2379 Ubiquiti EdgeRouter X Web Service denial of service

7.8CVSS7.8AI score0.00468EPSS

Exploits1References3

CVE•added 2023/04/28 4:31 p.m.•62 views

CVE-2023-2379

CVE-2023-2379 affects Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. The Web Service component is vulnerable to remote denial of service; manipulation leads to DoS. The exploit has been disclosed publicly and may be used. Remediation: upgrade to a version later than 2.0.9-hotfix.6 as advised by PT-2...

7.8CVSS7.6AI score0.00468EPSS

Exploits1References3Affected Software1