PT-2023-19204 · Ubiquiti · Edgerouter X
Leetmoon
·
Published
2023-04-28
·
Updated
2024-05-17
·
CVE-2023-2379
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Ubiquiti EdgeRouter X versions up to 2.0.9-hotfix.6
Description
A critical issue has been found in the Web Service component, allowing for denial of service through remote attack. The exploit has been disclosed publicly.
Recommendations
For versions up to 2.0.9-hotfix.6, update to a version later than 2.0.9-hotfix.6 to resolve the issue. As a temporary workaround, consider restricting access to the Web Service component to minimize the risk of exploitation.
Exploit
Fix
Improper Resource Release
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Edgerouter X