2 matches found
CVE-2019-16889
Ubiquiti EdgeMAX devices before 2.0.3 allow remote attackers to cause a denial of service disk consumption because .cache files in /var/run/beaker/containerfile/ are created when providing a valid length payload of 249 characters or fewer to the beaker.session.id cookie in a GET header. The...
CVE-2019-16889
CVE-2019-16889 affects Ubiquiti EdgeMAX devices prior to firmware 2.0.3, where handling of the beaker.session.id cookie can trigger a denial-of-service (disk consumption). Specifically, a valid length payload (≤ 249 characters) in a sequence of unique session IDs causes creation of *.cache files ...