Vulnerabilities > UI > Edgemax Edgerouter Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-18 | CVE-2023-31998 | Out-of-bounds Write vulnerability in UI Aircube Firmware and Edgemax Edgerouter Firmware A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices. | 7.5 |
| 2023-04-28 | CVE-2023-2373 | Command Injection vulnerability in UI Edgemax Edgerouter Firmware 2.0.9 A vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. | 8.8 |
| 2022-12-05 | CVE-2022-43553 | Unspecified vulnerability in UI Edgemax Edgerouter Firmware 2.0.9 A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and earlier) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later. | 8.8 |
| 2021-05-27 | CVE-2021-22909 | Improper Certificate Validation vulnerability in UI Edgemax Edgerouter Firmware A vulnerability found in EdgeMAX EdgeRouter V2.0.9 and earlier could allow a malicious actor to execute a man-in-the-middle (MitM) attack during a firmware update. | 7.5 |