Vulnerabilities > UI > Edgemax Edgerouter Firmware > 2.0.9

DATE CVE VULNERABILITY TITLE RISK
2023-07-18 CVE-2023-31998 Out-of-bounds Write vulnerability in UI Aircube Firmware and Edgemax Edgerouter Firmware
A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices.
network
low complexity
ui CWE-787
7.5
7.5
2023-04-28 CVE-2023-2373 Command Injection vulnerability in UI Edgemax Edgerouter Firmware 2.0.9
A vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6.
network
low complexity
ui CWE-77
8.8
8.8
2022-12-05 CVE-2022-43553 Unspecified vulnerability in UI Edgemax Edgerouter Firmware 2.0.9
A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and earlier) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later.
network
low complexity
ui
8.8
8.8
2021-05-27 CVE-2021-22909 Improper Certificate Validation vulnerability in UI Edgemax Edgerouter Firmware 2.0.9
A vulnerability found in EdgeMAX EdgeRouter V2.0.9 and earlier could allow a malicious actor to execute a man-in-the-middle (MitM) attack during a firmware update.
network
high complexity
ui CWE-295
7.5
7.5