Vulnerabilities
Vulnerable Software
Ui:  >> Edgemax Edgerouter Firmware  Security Vulnerabilities
A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices.
CVSS Score
5.9
EPSS Score
0.008
Published
2023-07-18
A vulnerability was identified in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This vulnerability affects unknown code of the component Web Management Interface. Such manipulation of the argument ecn-up leads to command injection. The attack may be performed from remote. The exploit is publicly available and might be used. The actual existence of this vulnerability is currently in question. The vendor position is that post-authentication issues are not accepted as vulnerabilities.
CVSS Score
7.3
EPSS Score
0.076
Published
2023-04-28
A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and earlier) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later.
CVSS Score
8.8
EPSS Score
0.01
Published
2022-12-05
A vulnerability found in EdgeMAX EdgeRouter V2.0.9 and earlier could allow a malicious actor to execute a man-in-the-middle (MitM) attack during a firmware update. This vulnerability is fixed in EdgeMAX EdgeRouter V2.0.9-hotfix.1 and later.
CVSS Score
7.5
EPSS Score
0.013
Published
2021-05-27


Contact Us

Shodan ® - All rights reserved