Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui unifi protect vulnerabilities and exploits
(subscribe to this query)
7.7
CVSSv2
CVE-2021-22944
A vulnerability found in UniFi Protect application V1.18.1 and previous versions allows a malicious actor with a view-only role and network access to gain the same privileges as the owner of the UniFi Protect application. This vulnerability is fixed in UniFi Protect application V...
Ui Unifi Protect
6.8
CVSSv2
CVE-2021-22957
A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and previous versions allows a malicious actor who has convinced a privileged user to access a URL with malicious code to take over said user’s account.This vulnerability ...
Ui Unifi Protect
8.3
CVSSv2
CVE-2021-22943
A vulnerability found in UniFi Protect application V1.18.1 and previous versions permits a malicious actor who has already gained access to a network to subsequently control the Protect camera(s) assigned to said network. This vulnerability is fixed in UniFi Protect application V...
Ui Unifi Protect
5
CVSSv2
CVE-2020-8213
An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP response code and response timing.
Ui Unifi Protect
5
CVSSv2
CVE-2020-8267
A security issue was found in UniFi Protect controller v1.14.10 and previous versions.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing malicious users to use the API to send authenticated messages without a valid token.Th...
Ui Unifi Protect Firmware
5
CVSSv2
CVE-2021-22882
UniFi Protect before v1.17.1 allows an malicious user to use spoofed cameras to perform a denial-of-service attack that may cause the UniFi Protect controller to crash.
Ui Unifi Protect Controller
6.5
CVSSv2
CVE-2020-8188
We have recently released new version of UniFi Protect firmware v1.13.3 and v1.14.10 for Unifi Cloud Key Gen2 Plus and UniFi Dream Machine Pro/UNVR respectively that fixes vulnerabilities found on Protect firmware v1.13.2, v1.14.9 and prior according to the description below:View...
Ui Unifi Protect Firmware
5
CVSSv2
CVE-2021-33820
An issue exists in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.
Ui Camera G3 Flex Firmware Uvc.v4.30.0.67
5
CVSSv2
CVE-2021-33818
An issue exists in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-o...
Ui Camera G3 Flex Firmware Uvc.v4.30.0.67
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started