mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
130 lines
5.1 KiB
JSON
130 lines
5.1 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2023-2379",
|
|
"ASSIGNER": "cna@vuldb.com",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "A vulnerability classified as critical has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Service. The manipulation leads to denial of service. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-227655."
|
|
},
|
|
{
|
|
"lang": "deu",
|
|
"value": "Es wurde eine Schwachstelle in Ubiquiti EdgeRouter X bis 2.0.9-hotfix.6 entdeckt. Sie wurde als kritisch eingestuft. Es betrifft eine unbekannte Funktion der Komponente Web Service. Durch Beeinflussen mit unbekannten Daten kann eine denial of service-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk erfolgen. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-404 Denial of Service",
|
|
"cweId": "CWE-404"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "Ubiquiti",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "EdgeRouter X",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "2.0.9-hotfix.0"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "2.0.9-hotfix.1"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "2.0.9-hotfix.2"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "2.0.9-hotfix.3"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "2.0.9-hotfix.4"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "2.0.9-hotfix.5"
|
|
},
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "2.0.9-hotfix.6"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://vuldb.com/?id.227655",
|
|
"refsource": "MISC",
|
|
"name": "https://vuldb.com/?id.227655"
|
|
},
|
|
{
|
|
"url": "https://vuldb.com/?ctiid.227655",
|
|
"refsource": "MISC",
|
|
"name": "https://vuldb.com/?ctiid.227655"
|
|
},
|
|
{
|
|
"url": "https://github.com/leetsun/IoT/tree/main/EdgeRouterX/DoS",
|
|
"refsource": "MISC",
|
|
"name": "https://github.com/leetsun/IoT/tree/main/EdgeRouterX/DoS"
|
|
}
|
|
]
|
|
},
|
|
"credits": [
|
|
{
|
|
"lang": "en",
|
|
"value": "leetmoon (VulDB User)"
|
|
}
|
|
],
|
|
"impact": {
|
|
"cvss": [
|
|
{
|
|
"version": "3.1",
|
|
"baseScore": 7.5,
|
|
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
|
|
"baseSeverity": "HIGH"
|
|
},
|
|
{
|
|
"version": "3.0",
|
|
"baseScore": 7.5,
|
|
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
|
|
"baseSeverity": "HIGH"
|
|
},
|
|
{
|
|
"version": "2.0",
|
|
"baseScore": 7.8,
|
|
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
|
|
"baseSeverity": "HIGH"
|
|
}
|
|
]
|
|
}
|
|
} |