CVE-2021-22909

Summary

A vulnerability found in EdgeMAX EdgeRouter V2.0.9 and earlier could allow a malicious actor to execute a man-in-the-middle (MitM) attack during a firmware update. This vulnerability is fixed in EdgeMAX EdgeRouter V2.0.9-hotfix.1 and later.

Affected Software

VendorProductVersion RangeStatus
n/aEdgeMAX EdgeRouterFixed Version: 2.0.9-hotfix.1 or later.affected

Weaknesses

  • CWE-300: Man-in-the-Middle (CWE-300)

ADP Enrichment

CVE Program Container

Additional References

References