MEDIUM✓ PATCH🇵🇱 Wersja polska

CVE-2020-8232

CVSS 6.5v3.1pub. 2020-08-17upd. 2024-11-21

An information disclosure vulnerability exists in EdgeMax EdgeSwitch firmware v1.9.0 that allowed read only users could obtain unauthorized information through SNMP community pages.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
  • Ui Edgeswitch Firmware

    APP
    Ui
    < 1.9.0
  • Ui Ep 16 Xg

    HW
    Ui
    wszystkie wersje
  • Ui Ep S16

    HW
    Ui
    wszystkie wersje
  • Ui Es 12f

    HW
    Ui
    wszystkie wersje
  • Ui Es 16 150w

    HW
    Ui
    wszystkie wersje
  • Ui Es 24 250w

    HW
    Ui
    wszystkie wersje
  • Ui Es 24 500w

    HW
    Ui
    wszystkie wersje
  • Ui Es 24 Lite

    HW
    Ui
    wszystkie wersje
  • Ui Es 48 500w

    HW
    Ui
    wszystkie wersje
  • Ui Es 48 750w

    HW
    Ui
    wszystkie wersje
  • Ui Es 48 Lite

    HW
    Ui
    wszystkie wersje
  • Ui Es 8 150w

    HW
    Ui
    wszystkie wersje
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2020-8234CRITICAL9.8ten sam produkt

A vulnerability exists in The EdgeMax EdgeSwitch firmware <v1.9.1 where the EdgeSwitch legacy web interface SI...

CVE-2020-8233HIGH8.8ten sam produkt

A command injection vulnerability exists in EdgeSwitch firmware <v1.9.0 that allowed an authenticated read-onl...

CVE-2019-5446HIGH7.2ten sam produkt

Command Injection in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to execute commands as root.

CVE-2018-12590HIGH7.2ten sam produkt

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an externally controlled format-string vulner...

CVE-2019-5445MEDIUM4.9ten sam produkt

DoS in EdgeMAX EdgeSwitch prior to 1.8.2 allow an Admin user to Crash the SSH CLI interface by using crafted c...