A vulnerability exists in The EdgeMax EdgeSwitch firmware <v1.9.1 where the EdgeSwitch legacy web interface SIDSSL cookie for admin can be guessed, enabling the attacker to obtain high privileges and get a root shell by a Command injection.
References
Configurations
Configuration 1 (hide)
AND |
|
History
07 Nov 2023, 03:26
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2020-08-21 21:15
Updated : 2024-02-28 17:47
NVD link : CVE-2020-8234
Mitre link : CVE-2020-8234
CVE.ORG link : CVE-2020-8234
JSON object : View
Products Affected
ui
- es-24-lite
- es-24-250w
- es-48-500w
- es-12f
- es-48-lite
- es-24-500w
- es-16-150w
- edgemax_firmware
- es-16-xg
- es-48-750w
- es-8-150w
- ep-s16
CWE
CWE-613
Insufficient Session Expiration