CVE-2019-16889

Ubiquiti EdgeMAX devices before 2.0.3 allow remote attackers to cause a denial of service (disk consumption) because *.cache files in /var/run/beaker/container_file/ are created when providing a valid length payload of 249 characters or fewer to the beaker.session.id cookie in a GET header. The attacker can use a long series of unique session IDs.
Configurations

Configuration 1


Information

Published : 2019-09-25 08:15

Updated : 2020-08-24 05:37


NVD link : CVE-2019-16889

Mitre link : CVE-2019-16889

Products Affected
CWE