CVE-2017-0938
N/A
N/A
Summary
Denial of Service attack in airMAX < 8.3.2 , airMAX < 6.0.7 and EdgeMAX < 1.9.7 allow attackers to use the Discovery Protocol in amplification attacks.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| HackerOne | airMAX, EdgeMAX | airMAX < 8.3.2, airMAX < 6.0.7, EdgeRouter < v1.9.7 | affected |
Weaknesses
- CWE-400: Denial of Service (CWE-400)
ADP Enrichment
CVE Program Container
Additional References
- https://community.ubnt.com/t5/airMAX-Updates-Blog/airOS-v6-0-7-Has-Been-Released/ba-p/2056522
- https://hackerone.com/reports/221625
- https://community.ubnt.com/t5/airMAX-Updates-Blog/airOS-v8-3-2-Has-Been-Released/ba-p/2049215
References
- https://community.ubnt.com/t5/airMAX-Updates-Blog/airOS-v6-0-7-Has-Been-Released/ba-p/2056522
- https://hackerone.com/reports/221625
- https://community.ubnt.com/t5/airMAX-Updates-Blog/airOS-v8-3-2-Has-Been-Released/ba-p/2049215
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.