CVE-2023-30856 – eDEX-UI cross-site websocket hijacking vulnerability enables remote command execution
https://notcve.org/view.php?id=CVE-2023-30856
eDEX-UI is a science fiction terminal emulator. Versions 2.2.8 and prior are vulnerable to cross-site websocket hijacking. When running eDEX-UI and browsing the web, a malicious website can connect to eDEX's internal terminal control websocket, and send arbitrary commands to the shell. The project has been archived since 2021, and as of time of publication there are no plans to patch this issue and release a new version. Some workarounds are available, including shutting down eDEX-UI when browsing the web and ensuring the eDEX terminal runs with lowest possible privileges. • https://christian-schneider.net/CrossSiteWebSocketHijacking.html https://github.com/GitSquared/edex-ui/blob/04a00c4079908788b371c6ecdefff96d0d9950f8/src/classes/terminal.class.js#L458 https://github.com/GitSquared/edex-ui/security/advisories/GHSA-q8xc-f2wf-ffh9 • CWE-346: Origin Validation Error CWE-1385: Missing Origin Validation in WebSockets •
CVE-2023-2377 – Ubiquiti EdgeRouter X Web Management Interface command injection
https://notcve.org/view.php?id=CVE-2023-2377
A vulnerability was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Web Management Interface. The manipulation of the argument name leads to command injection. The attack can be launched remotely. • https://github.com/leetsun/IoT/tree/main/EdgeRouterX/CI/9 https://vuldb.com/?ctiid.227653 https://vuldb.com/?id.227653 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVE-2023-2376 – Ubiquiti EdgeRouter X Web Management Interface command injection
https://notcve.org/view.php?id=CVE-2023-2376
A vulnerability was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. It has been classified as critical. Affected is an unknown function of the component Web Management Interface. The manipulation of the argument dpi leads to command injection. It is possible to launch the attack remotely. • https://github.com/leetsun/IoT/tree/main/EdgeRouterX/CI/8 https://vuldb.com/?ctiid.227652 https://vuldb.com/?id.227652 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVE-2023-2375 – Ubiquiti EdgeRouter X Web Management Interface command injection
https://notcve.org/view.php?id=CVE-2023-2375
A vulnerability was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6 and classified as critical. This issue affects some unknown processing of the component Web Management Interface. The manipulation of the argument src leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/0x0jr/HTB-Devvortex-CVE-2023-2375-PoC https://github.com/leetsun/IoT/tree/main/EdgeRouterX/CI/7 https://vuldb.com/?ctiid.227651 https://vuldb.com/?id.227651 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVE-2023-2374 – Ubiquiti EdgeRouter X Web Management Interface command injection
https://notcve.org/view.php?id=CVE-2023-2374
A vulnerability has been found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6 and classified as critical. This vulnerability affects unknown code of the component Web Management Interface. The manipulation of the argument ecn-down leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/leetsun/IoT/tree/main/EdgeRouterX/CI/6 https://vuldb.com/?ctiid.227650 https://vuldb.com/?id.227650 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •