CVE-2019-5424

Summary

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, a privileged user can execute arbitrary shell commands over the SSH CLI interface. This allows to execute shell commands under the root user.

Affected Software

VendorProductVersion RangeStatus
Ubiquiti NetworksEdgeMAXEdgeSwitch X prior to v1.1.1affected

Weaknesses

  • CWE-77: Command Injection - Generic (CWE-77)

ADP Enrichment

CVE Program Container

Additional References

References