CVE-2019-5426

MEDIUM Year: 2019
CVSS v3 Score
4.8
Medium
CVSS v2 Score
5.8
Medium
Weakness Type
CWE-287
View all →

Vulnerability Description

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated user can use the "local port forwarding" and "dynamic port forwarding" (SOCKS proxy) functionalities. Remote attackers without credentials can exploit this bug to access local services or forward traffic through the device if SSH is enabled in the system settings.

Related Vulnerabilities

CVE-2017-12195

MEDIUM
CVSS:4.8(Medium)

A flaw was found in all Openshift Enterprise versions using the openshift elasticsearch plugin. An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later acc...

CWE-2872017

CVE-2017-14018

MEDIUM
CVSS:4.8(Medium)

An improper authentication issue was discovered in Johnson & Johnson Ethicon Endo-Surgery Generator Gen11, all versions released before November 29, 2017. The security authentication mechanism used be...

CWE-2872017

CVE-2019-14880

MEDIUM
CVSS:4.8(Medium)

A vulnerability was found in Moodle versions 3.7 before 3.7.3, 3.6 before 3.6.7, 3.5 before 3.5.9 and earlier. OAuth 2 providers who do not verify users' email address changes require additional verif...

CWE-2872019

CVE-2024-22247

MEDIUM
CVSS:4.8(Medium)

VMware SD-WAN Edge contains a missing authentication and protection mechanism vulnerability. A malicious actor with physical access to the SD-WAN Edge appliance during activation can potentially explo...

CWE-2872024

CVE-2025-1024

HIGH
CVSS:4.8(Medium)

A vulnerability exists in ChurchCRM 5.13.0 that allows an attacker to execute arbitrary JavaScript in a victim's browser via Reflected Cross-Site Scripting (XSS) in the EditEventAttendees.php page. Th...

CWE-2872025

CVE-2018-0247

MEDIUM
CVSS:4.7(Medium)

A vulnerability in Web Authentication (WebAuth) clients for the Cisco Wireless LAN Controller (WLC) and Aironet Access Points running Cisco IOS Software could allow an unauthenticated, adjacent attack...

CWE-2872018