CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-43553

A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and earlier) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.037

EPSS Ranking 87.4%

CVSS Severity

CVSS v3 Score 8.8

References

https://community.ui.com/releases/Security-Advisory-Bulletin-026-026/07697c65-30b3-4c06-a158-35e06534480d
https://community.ui.com/releases/Security-Advisory-Bulletin-026-026/07697c65-30b3-4c06-a158-35e06534480d

Products affected by CVE-2022-43553

Ui » Edgemax Edgerouter » Version: N/A

cpe:2.3:h:ui:edgemax_edgerouter:-
Ui » Edgemax Edgerouter Firmware » Version: N/A

cpe:2.3:o:ui:edgemax_edgerouter_firmware:-
Ui » Edgemax Edgerouter Firmware » Version: 2.0.9

cpe:2.3:o:ui:edgemax_edgerouter_firmware:2.0.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-43553

Products

Pricing

Contact Us