CVE-2023-1458
Published: 25 March 2023
Summary
CVE-2023-1458 is a high-severity Command Injection (CWE-77) vulnerability in Ui Edgerouter X Firmware. Its CVSS base score is 7.2 (High).
Operationally, ranked in the top 7.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
CVE-2023-1458 is a command-injection vulnerability affecting the OSPF Handler component in Ubiquiti EdgeRouter X firmware version 2.0.9-hotfix.6. The flaw resides in the handling of the “area” argument and is tracked as CWE-77; it received a CVSS 3.1 score of 7.2 reflecting network attack vector, low complexity, and high-privileged authentication requirements.
An authenticated remote attacker who can supply a crafted “area” value can execute arbitrary operating-system commands on the device, resulting in full confidentiality, integrity, and availability impact. Public exploit code has been disclosed, although the vulnerability’s real-world existence remains disputed and the vendor maintains that post-authentication issues are outside its vulnerability-handling policy.
EPSS for the CVE has remained flat at 0.0862 with no material increase since disclosure, indicating limited observed exploitation interest to date. The primary references are Vuldb entries that reiterate the vendor’s stance and do not describe official patches or configuration work-arounds.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-23707
Vulnerability details
A vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknown functionality of the component OSPF Handler. The manipulation of the argument area leads to command injection. The attack can…
more
be launched remotely. The exploit has been disclosed to the public and may be used. The real existence of this vulnerability is still doubted at the moment. The associated identifier of this vulnerability is VDB-223303. NOTE: The vendor position is that post-authentication issues are not accepted as vulnerabilities.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.