CVE-2025-27211

Summary

An Improper Input Validation in EdgeMAX EdgeSwitch (Version 1.10.4 and earlier) could allow a Command Injection by a malicious actor with access to EdgeSwitch adjacent network.

Affected Software

VendorProductVersion RangeStatus
Ubiquiti IncEdgeMAX EdgeSwitch1.11.0 < 1.11.0unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References