A privilege escalation in the EdgeSwitch prior to version 1.7.1, an CGI script don't fully sanitize the user input resulting in local commands execution, allowing an operator user (Privilege-1) to escalate privileges and became administrator (Privilege-15).
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HUi Edgeswitch
OSUi< 1.7.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPECommand Injection
CWE
Related vulnerabilities
CVE-2018-12590HIGH7.2ten sam produkt
Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an externally controlled format-string vulner...
CVE-2026-34910CRITICAL10.0⚠ KEVPL ✓ten sam vendor
Command Injection w UniFi OS via nieprawidłowa walidacja wejścia
CVE-2026-34909CRITICAL10.0⚠ KEVPL ✓ten sam vendor
Path Traversal w UniFi OS — dostęp do plików systemowych i przejęcie konta
CVE-2026-34908CRITICAL10.0⚠ KEVPL ✓ten sam vendor
Nieprawidłowa kontrola dostępu w UniFi OS — nieautoryzowane zmiany systemowe
CVE-2010-5330CRITICAL9.8⚠ KEVten sam vendor
On certain Ubiquiti devices, Command Injection exists via a GET request to stainfo.cgi (aka Show AP info) beca...