Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui unifi protect vulnerabilities and exploits
(subscribe to this query)
9.6
CVSSv3
CVE-2021-22943
A vulnerability found in UniFi Protect application V1.18.1 and previous versions permits a malicious actor who has already gained access to a network to subsequently control the Protect camera(s) assigned to said network. This vulnerability is fixed in UniFi Protect application V...
Ui Unifi Protect
8.8
CVSSv3
CVE-2021-22957
A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and previous versions allows a malicious actor who has convinced a privileged user to access a URL with malicious code to take over said user’s account.This vulnerability ...
Ui Unifi Protect
5.3
CVSSv3
CVE-2020-8213
An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP response code and response timing.
Ui Unifi Protect
8
CVSSv3
CVE-2021-22944
A vulnerability found in UniFi Protect application V1.18.1 and previous versions allows a malicious actor with a view-only role and network access to gain the same privileges as the owner of the UniFi Protect application. This vulnerability is fixed in UniFi Protect application V...
Ui Unifi Protect
5.3
CVSSv3
CVE-2020-8267
A security issue was found in UniFi Protect controller v1.14.10 and previous versions.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing malicious users to use the API to send authenticated messages without a valid token.Th...
Ui Unifi Protect Firmware
7.5
CVSSv3
CVE-2021-22882
UniFi Protect before v1.17.1 allows an malicious user to use spoofed cameras to perform a denial-of-service attack that may cause the UniFi Protect controller to crash.
Ui Unifi Protect Controller
8.8
CVSSv3
CVE-2020-8188
We have recently released new version of UniFi Protect firmware v1.13.3 and v1.14.10 for Unifi Cloud Key Gen2 Plus and UniFi Dream Machine Pro/UNVR respectively that fixes vulnerabilities found on Protect firmware v1.13.2, v1.14.9 and prior according to the description below:View...
Ui Unifi Protect Firmware
7.5
CVSSv3
CVE-2021-33820
An issue exists in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.
Ui Camera G3 Flex Firmware Uvc.v4.30.0.67
7.5
CVSSv3
CVE-2021-33818
An issue exists in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-o...
Ui Camera G3 Flex Firmware Uvc.v4.30.0.67
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started