CVE-2017-0938

EPSS 21.0%CWE-400

Denial of Service attack in airMAX < 8.3.2 , airMAX < 6.0.7 and EdgeMAX < 1.9.7 allow attackers to use the Discovery Protocol in amplification attacks.

Affected products

HackerOne · airMAX, EdgeMAX

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://community.ubnt.com/t5/airMAX-Updates-Blog/airOS-v6-0-7-Has-Been-Released/ba-p/2056522 https://community.ubnt.com/t5/airMAX-Updates-Blog/airOS-v8-3-2-Has-Been-Released/ba-p/2049215 https://hackerone.com/reports/221625