Security Advisory

CVE-2019-16889

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-09-25 19:51:38

Last updated 2024-08-05 01:24:48

Assigner mitre

State PUBLISHED

Description

Ubiquiti EdgeMAX devices before 2.0.3 allow remote attackers to cause a denial of service (disk consumption) because *.cache files in /var/run/beaker/container_file/ are created when providing a valid length payload of 249 characters or fewer to the beaker.session.id cookie in a GET header. The attacker can use a long series of unique session IDs.

← Browse all CVEs View on cve.org ↗