Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui unifi vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-28365
A backup file vulnerability found in UniFi applications (Version 7.3.83 and previous versions) running on Linux operating systems allows application administrators to execute malicious commands on the host device being restored.
Ui Unifi
383
VMScore
CVE-2013-3572
Cross-site scripting (XSS) vulnerability in the administer interface in the UniFi Controller in Ubiquiti Networks UniFi 2.3.5 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a crafted client hostname.
Ui Unifi
739
VMScore
CVE-2021-22943
A vulnerability found in UniFi Protect application V1.18.1 and previous versions permits a malicious actor who has already gained access to a network to subsequently control the Protect camera(s) assigned to said network. This vulnerability is fixed in UniFi Protect application V...
Ui Unifi Protect
685
VMScore
CVE-2021-22944
A vulnerability found in UniFi Protect application V1.18.1 and previous versions allows a malicious actor with a view-only role and network access to gain the same privileges as the owner of the UniFi Protect application. This vulnerability is fixed in UniFi Protect application V...
Ui Unifi Protect
580
VMScore
CVE-2021-22952
A vulnerability found in UniFi Talk application V1.12.3 and previous versions permits a malicious actor who has already gained access to a network to subsequently control Talk device(s) assigned to said network if they are not yet adopted. This vulnerability is fixed in UniFi Tal...
Ui Unifi Talk
605
VMScore
CVE-2021-22957
A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and previous versions allows a malicious actor who has convinced a privileged user to access a URL with malicious code to take over said user’s account.This vulnerability ...
Ui Unifi Protect
445
VMScore
CVE-2020-8213
An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP response code and response timing.
Ui Unifi Protect
383
VMScore
CVE-2019-5456
SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= 5.10.21 and their actual SMTP server to record their SMTP credentials for malicious use later.
Ui Unifi Controller
231
VMScore
CVE-2014-2226
Ubiquiti UniFi Controller prior to 3.2.1 logs the administrative password hash in syslog messages, which allows man-in-the-middle malicious users to obtain sensitive information via unspecified vectors.
Ui Unifi Controller
605
VMScore
CVE-2014-2227
The default Flash cross-domain policy (crossdomain.xml) in Ubiquiti Networks UniFi Video (formerly AirVision aka AirVision Controller) prior to 3.0.1 does not restrict access to the application, which allows remote malicious users to bypass the Same Origin Policy via a crafted SW...
Ui Unifi Video
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »