Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fixed soft lockups in fib6selectpath under high next hop changes. Soft lockups were observed on a cluster of Linux-based edge routers located in a highly dynamic environment. Using the bird service, these routers continuous...

PT-2024-37014

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to soft lockups in the Linux kernel's IPv6 route handling, specifically in the fib6 select path function. This occurs when the nodes of the linked list are...

PT-2023-5581 · Cisco · Cisco Sd-Wan Vmanage

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN vManage affected versions not specified Description: A vulnerability in the command line interface CLI management interface of Cisco SD-WAN vManage could allow an authenticated, local attacker to bypass authorization and roll bac...

CVE-2023-31998

A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices...

Ubiquiti EdgeRouters 代码注入漏洞

Ubiquiti EdgeRouters is a series of edge routers from Ubiquiti USA. A security vulnerability exists in Ubiquiti EdgeRouters version 2.0.9-hotfix.5 and earlier, UniFi Security Gateways USG version 4.4.56 and earlier, which stems from a vulnerability that allows a malicious actor to connect directl...

The vulnerability of the command-line interface of microprogramming software for Cisco SD-WAN vBond Orchestrator, Cisco SD-WAN vEdge Cloud Routers, Cisco SD-WAN vEdge Routers, Cisco SD-WAN vSmart Controller, and the centralized network management system Cisco SD-WAN vManage arises from incorrect path name restrictions related to restricted access directories. This vulnerability allows attackers to create or re-record critical files.

The vulnerability of the command-line interface of microprogramming software for Cisco SD-WAN vBond Orchestrator, Cisco SD-WAN vEdge Cloud Routers, Cisco SD-WAN vEdge Routers, Cisco SD-WAN vSmart Controller, and the centralized network management system Cisco SD-WAN vManage is related to an...

CVE-2022-43553

A remote code execution vulnerability in EdgeRouters Version 2.0.9-hotfix.4 and earlier allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later...

PT-2022-26961 · Ubiquiti · Edgerouters

Name of the Vulnerable Software and Affected Versions: EdgeRouters versions 2.0.9-hotfix.4 and earlier Description: A remote code execution issue allows a malicious actor with an operator account to run arbitrary administrator commands. This issue is fixed in Version 2.0.9-hotfix.5 and later...

Ubiquiti EdgeRouters 安全漏洞

Ubiquiti EdgeRouters is a series of edge routers from Ubiquiti USA. A security vulnerability exists in Ubiquiti EdgeRouters version 2.0.9-hotfix.4 and prior versions, which originated from a vulnerability that allows a malicious actor with an operator account to run arbitrary administrator comman...

CVE-2020-3369

A vulnerability in the deep packet inspection DPI engine of Cisco SD-WAN vEdge Routers could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper processing of FTP traffic. An attacker could exploit this...