CVE-2020-8233

Published: Aug 17, 2020Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

A command injection vulnerability exists in EdgeSwitch firmware <v1.9.0 that allowed an authenticated read-only user to execute arbitrary shell commands over the HTTP interface, allowing them to escalate privileges.

Affected (5)

Products: Ui: Edgeswitch Firmware · Opensuse: Backports Sle, Leap

1 product

Edgeswitch Firmware

2 products

Configuration A

1 vulnerable · 11 platform

Vulnerable Software	Affected Versions
Ui Edgeswitch Firmware	Before 1.9.0

Running on/with	Platform Versions
Ui Ep 16 Xg	All versions
Ui Ep S16	All versions
Ui Es 12f	All versions
Ui Es 16 150w	All versions
Ui Es 24 250w	All versions
Ui Es 24 500w	All versions
Ui Es 24 Lite	All versions
Ui Es 48 500w	All versions
Ui Es 48 750w	All versions
Ui Es 48 Lite	All versions
Ui Es 8 150w	All versions

Configuration B

4 vulnerable

Vulnerable Software	Affected Versions
Opensuse Backports Sle	Version 15.0 sp1
Opensuse Backports Sle	Version 15.0 sp2
Opensuse Leap	Version 15.1
Opensuse Leap	Version 15.2

Related CWEs

Improper Neutralization of Special Elements used in a Command ('Command Injection')

The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (8)

http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00019.html

Source: support@hackerone.com

Mailing ListThird Party Advisory

https://community.ui.com/releases/EdgeMAX-EdgeSwitch-Firmware-v1-9-1-v1-9-1/8a87dfc5-70f5-4055-8d67-570db1f5695c

Source: support@hackerone.com

PatchRelease NotesVendor Advisory

https://community.ui.com/releases/Security-advisory-bulletin-014-014/1c32c056-2c64-4e60-ac23-ce7d8f387821

Source: support@hackerone.com

Vendor Advisory

https://www.ui.com/download/edgemax

Source: support@hackerone.com

Product

http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00019.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://community.ui.com/releases/EdgeMAX-EdgeSwitch-Firmware-v1-9-1-v1-9-1/8a87dfc5-70f5-4055-8d67-570db1f5695c

Source: af854a3a-2127-422b-91ae-364da2661108

PatchRelease NotesVendor Advisory

https://community.ui.com/releases/Security-advisory-bulletin-014-014/1c32c056-2c64-4e60-ac23-ce7d8f387821

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.ui.com/download/edgemax

Source: af854a3a-2127-422b-91ae-364da2661108

Product

Timeline

No history available yet.