CVE-2019-16889

Published: Sep 25, 2019Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Ubiquiti EdgeMAX devices before 2.0.3 allow remote attackers to cause a denial of service (disk consumption) because *.cache files in /var/run/beaker/container_file/ are created when providing a valid length payload of 249 characters or fewer to the beaker.session.id cookie in a GET header. The attacker can use a long series of unique session IDs.

Affected (12)

Products: Ui: Er X Firmware, Er X Sfp Firmware, Ep R6 Firmware, Erlite 3 Firmware, Erpoe 5 Firmware, Er 8 Firmware, Erpro 8 Firmware, Ep R8 Firmware, Er 4 Firmware, Er 6p Firmware, Er 12 Firmware, Er 8 Xg Firmware

12 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Er X Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Er X	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Er X Sfp Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Er X Sfp	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Ep R6 Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Ep R6	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Erlite 3 Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Erlite 3	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Erpoe 5 Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Erpoe 5	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Er 8 Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Er 8	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Erpro 8 Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Erpro 8	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Ep R8 Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Ep R8	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Er 4 Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Er 4	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Er 6p Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Er 6p	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Er 12 Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Er 12	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Er 8 Xg Firmware	Before 2.0.3

Running on/with	Platform Versions
Ui Er 8 Xg	All versions

Related CWEs

CWE-770

Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References (6)

https://community.ui.com/releases/New-EdgeRouter-firmware-2-0-3-has-been-released-2-0-3/e8badd28-a112-4269-9fb6-ffe3fc0e1643

Source: cve@mitre.org

PatchVendor Advisory

https://hackerone.com/reports/406614

Source: cve@mitre.org

ExploitIssue TrackingThird Party Advisory

https://mjlanders.com/2019/07/28/resource-consumption-dos-on-edgemax-v1-10-6/

Source: cve@mitre.org

ExploitThird Party Advisory

https://community.ui.com/releases/New-EdgeRouter-firmware-2-0-3-has-been-released-2-0-3/e8badd28-a112-4269-9fb6-ffe3fc0e1643

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://hackerone.com/reports/406614

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitIssue TrackingThird Party Advisory

https://mjlanders.com/2019/07/28/resource-consumption-dos-on-edgemax-v1-10-6/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.