Ubiquiti Networks EdgeSwitch X Access Control Error Vulnerability

The Ubiquiti Networks EdgeSwitch is a Gigabit network switch device from Ubiquiti Networks, Inc. A trust management issue vulnerability exists in Ubiquiti Networks EdgeSwitch X v1.1.0 and prior versions. The vulnerability stems from the lack of an effective trust management mechanism in the netwo...

Ubiquiti Networks EdgeSwitch X Command Injection Vulnerability

The Ubiquiti Networks EdgeSwitch is a Gigabit network switch device from Ubiquiti Networks, Inc. A command injection vulnerability exists in Ubiquiti Networks EdgeSwitch X version 1.1.0 and earlier. The vulnerability arises from a network system or product not properly filtering specific elements...

CVE-2019-5426

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated user can use the "local port forwarding" and "dynamic port forwarding" SOCKS proxy functionalities. Remote attackers without credentials can exploit this bug to access local services or forward traffic through the device if SS...

CVE-2019-5424

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, a privileged user can execute arbitrary shell commands over the SSH CLI interface. This allows to execute shell commands under the root user...