72 matches found
Command injection
A vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Management Interface. The manipulation of the argument ecn-up leads to command injection. It is possible to initiate the attack remotely. T...
CVE-2023-2373 Ubiquiti EdgeRouter X Web Management command injection
A vulnerability was identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This vulnerability affects unknown code of the component Web Management Interface. Such manipulation of the argument ecn-up leads to command injection. The attack may be performed from remote. The exploit is publicly...
CVE-2023-2373
CVE-2023-2373 affects Ubiquiti EdgeRouter X Web Management Interface (versions up to 2.0.9-hotfix.6). The vulnerability arises from improper handling of the ecn-up parameter, enabling remote command injection. Exploitation details have been publicly disclosed across multiple sources; no official ...
CVE-2023-2373 Ubiquiti EdgeRouter X Web Management command injection
A vulnerability was identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This vulnerability affects unknown code of the component Web Management Interface. Such manipulation of the argument ecn-up leads to command injection. The attack may be performed from remote. The exploit is publicly...
Ubiquiti EdgeRouter 安全漏洞
The Ubiquiti EdgeRouter is a router from Ubiquiti USA. A security vulnerability exists in Ubiquiti EdgeRouter X version 2.0.9-hotfix.6 and prior versions. An attacker could exploit this vulnerability to cause a denial of service on the system...
PT-2023-19172
Name of the Vulnerable Software and Affected Versions Ubiquiti EdgeRouter X versions up to 2.0.9-hotfix.6 Description A critical issue has been found in the Web Management Interface component. The manipulation of the ecn-down argument leads to command injection. This issue can be exploited...
PT-2023-19192
Name of the Vulnerable Software and Affected Versions Ubiquiti EdgeRouter X versions up to 2.0.9-hotfix.6 Description A critical issue affects an unknown functionality of the Web Management Interface component. The manipulation of the name argument leads to command injection. This issue can be...
PT-2023-19198
Name of the Vulnerable Software and Affected Versions Ubiquiti EdgeRouter X versions up to 2.0.9-hotfix.6 Description A critical issue affects some unknown functionality of the Web Management Interface component. The manipulation of the suffix-rate-up argument leads to command injection. The atta...
Ubiquiti EdgeRouter 命令注入漏洞
The Ubiquiti EdgeRouter is a router from Ubiquiti USA. A command injection vulnerability exists in Ubiquiti EdgeRouter X version 2.0.9-hotfix.6 and prior versions, which stems from an incorrect operation of the parameter ecn-down that can lead to command injection...
Ubiquiti EdgeRouter 命令注入漏洞
The Ubiquiti EdgeRouter is a router from Ubiquiti, Inc. A command injection vulnerability exists in Ubiquiti EdgeRouter X version 2.0.9-hotfix.6 and prior versions, which stems from an incorrect manipulation of the parameter src that can lead to command injection...
Ubiquiti EdgeRouter 命令注入漏洞
The Ubiquiti EdgeRouter is a router from Ubiquiti, Inc. A command injection vulnerability exists in Ubiquiti EdgeRouter X version 2.0.9-hotfix.6 and prior versions, which stems from the fact that incorrect manipulation of the parameter dpi can lead to command injection...
Ubiquiti EdgeRouter 命令注入漏洞
The Ubiquiti EdgeRouter is a router from Ubiquiti, Inc. A command injection vulnerability exists in Ubiquiti EdgeRouter X version 2.0.9-hotfix.6 and prior versions, which stems from an incorrect manipulation of the parameter name that can lead to command injection...
Ubiquiti EdgeRouter 命令注入漏洞
The Ubiquiti EdgeRouter is a router from Ubiquiti USA. A command injection vulnerability exists in Ubiquiti EdgeRouter X version 2.0.9-hotfix.6 and prior versions, which stems from the fact that incorrect manipulation of the parameter suffix-rate-up can lead to command injection...
PT-2023-19204 · Ubiquiti · Edgerouter X
Name of the Vulnerable Software and Affected Versions: Ubiquiti EdgeRouter X versions up to 2.0.9-hotfix.6 Description: A critical issue has been found in the Web Service component, allowing for denial of service through remote attack. The exploit has been disclosed publicly. Recommendations: For...
PT-2023-19166
Name of the Vulnerable Software and Affected Versions Ubiquiti EdgeRouter X versions up to 2.0.9-hotfix.6 Description A critical issue was found in the Web Management Interface component. The manipulation of the ecn-up argument leads to command injection, allowing remote attacks. The exploit has...
PT-2023-19184
Name of the Vulnerable Software and Affected Versions Ubiquiti EdgeRouter X versions up to 2.0.9-hotfix.6 Description A critical issue affects the Web Management Interface component. The manipulation of the dpi argument leads to command injection, allowing remote attacks. The issue has been...
CVE-2023-1458
A vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknown functionality of the component OSPF Handler. The manipulation of the argument area leads to command injection. The attack can be launched remotely. The...
CVE-2023-1458
A vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknown functionality of the component OSPF Handler. The manipulation of the argument area leads to command injection. The attack can be launched remotely. The...
CVE-2023-1458
A vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknown functionality of the component OSPF Handler. The manipulation of the argument area leads to command injection. The attack can be launched remotely. The...
Command injection
A vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknown functionality of the component OSPF Handler. The manipulation of the argument area leads to command injection. The attack can be launched remotely. The...