CVE-2019-5445

Published: Jul 10, 2019Modified: Nov 21, 2024

4.9

Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.2 / Impact: 3.6

Source: NVD

Description

DoS in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to Crash the SSH CLI interface by using crafted commands.

Affected (1)

Products: Ui: Edgeswitch Firmware

1 product

Edgeswitch Firmware

Configuration A

1 vulnerable · 11 platform

Vulnerable Software	Affected Versions
Ui Edgeswitch Firmware	Before 1.8.2

Running on/with	Platform Versions
Ui Ep S16.	All versions
Ui Es 12f	All versions
Ui Es 16 150w	All versions
Ui Es 16 Xg	All versions
Ui Es 24 250w	All versions
Ui Es 24 500w	All versions
Ui Es 24 Lite	All versions
Ui Es 48 500w	All versions
Ui Es 48 750w	All versions
Ui Es 48 Lite	All versions
Ui Es 8 150w	All versions

Related CWEs

Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (2)

https://community.ui.com/releases/EdgeMAX-EdgeSwitch-Firmware-v1-8-2/824d58b1-6027-49cf-878d-2076c01948b7

Source: support@hackerone.com

Release NotesVendor Advisory

https://community.ui.com/releases/EdgeMAX-EdgeSwitch-Firmware-v1-8-2/824d58b1-6027-49cf-878d-2076c01948b7

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

Timeline

No history available yet.