What is CVE-2020-8232?

CVE-2020-8232 is an information disclosure vulnerability that exists in EdgeMax EdgeSwitch firmware v1.9.0.

How does CVE-2020-8232 impact EdgeMax EdgeSwitch firmware v1.9.0?

CVE-2020-8232 allows read-only users to obtain unauthorized information through SNMP community pages.

What software versions are affected by CVE-2020-8232?

EdgeMax EdgeSwitch firmware v1.9.0 is the only affected software version.

What is the severity of CVE-2020-8232?

CVE-2020-8232 has a severity value of 6.5 out of 10.

How can I fix CVE-2020-8232?

To fix CVE-2020-8232, it is recommended to update to EdgeMax EdgeSwitch firmware version 1.9.1 or higher.

Vulnerability/
CVE-2020-8232

medium

6.5

CWE

200

17/8/2020

4/8/2024

CVE-2020-8232: Infoleak

First published: Mon Aug 17 2020(Updated: )

An information disclosure vulnerability exists in EdgeMax EdgeSwitch firmware v1.9.0 that allowed read only users could obtain unauthorized information through SNMP community pages.

Credit: support@hackerone.com

Affected Software	Affected Version	How to fix
Ubiquiti EdgeSwitch Firmware	<1.9.0
ui ep-16-xg
ui ep-s16
UI ES-12F
ui es-16-150w
ui es-24-250w
ui es-24-500w
ui es-24-lite
UI ES-48-500W
UI ES-48-750W
ui es-48-lite
ui es-8-150w

Remedy

https://community.ui.com/releases/EdgeMAX-EdgeSwitch-Firmware-v1-9-1-v1-9-1/8a87dfc5-70f5-4055-8d67-570db1f5695c

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2020-8232?
CVE-2020-8232 is an information disclosure vulnerability that exists in EdgeMax EdgeSwitch firmware v1.9.0.
How does CVE-2020-8232 impact EdgeMax EdgeSwitch firmware v1.9.0?
CVE-2020-8232 allows read-only users to obtain unauthorized information through SNMP community pages.
What software versions are affected by CVE-2020-8232?
EdgeMax EdgeSwitch firmware v1.9.0 is the only affected software version.
What is the severity of CVE-2020-8232?
CVE-2020-8232 has a severity value of 6.5 out of 10.
How can I fix CVE-2020-8232?
To fix CVE-2020-8232, it is recommended to update to EdgeMax EdgeSwitch firmware version 1.9.1 or higher.

agent/type
collector/mitre-cve
source/MITRE
agent/remedy
agent/severity
agent/author
agent/references
agent/weakness
agent/last-modified-date
agent/first-publish-date
agent/event
agent/description
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/ui
canonical/ubiquiti edgeswitch firmware
canonical/ui ep-16-xg
canonical/ui ep-s16
canonical/ui es-12f
canonical/ui es-16-150w
canonical/ui es-24-250w
canonical/ui es-24-500w
canonical/ui es-24-lite
canonical/ui es-48-500w
canonical/ui es-48-750w
canonical/ui es-48-lite
canonical/ui es-8-150w

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.