RSS   Vulnerabilities for 'Edgeswitch'   RSS

2020-02-07
 
CVE-2020-8126

CWE-269
 

 
A privilege escalation in the EdgeSwitch prior to version 1.7.1, an CGI script don't fully sanitize the user input resulting in local commands execution, allowing an operator user (Privilege-1) to escalate privileges and became administrator (Privilege-15).

 

 >>> Vendor: UI 20 Products
Aircam
Aircam dome
Aircam mini
Airvision firmware
Unifi
Unifi video
Unifi controller
Edgeos
Edgeswitch x
Aircam firmware
Unifi firmware
UCRM
Edgeswitch
Airvision controller
Mfi controller
Cloud key gen2
Cloud key gen2 plus
Unifi protect
Unifi talk
Unifi switch firmware


Copyright 2024, cxsecurity.com

 

Back to Top