Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui unifi vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv2
CVE-2021-44527
A vulnerability found in UniFi Switch firmware Version 5.43.35 and previous versions allows a malicious actor who has already gained access to the network to perform a Deny of Service (DoS) attack on the affected switch.This vulnerability is fixed in UniFi Switch firmware 5.76.6 ...
Ui Unifi Switch Firmware
6.8
CVSSv2
CVE-2021-22957
A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and previous versions allows a malicious actor who has convinced a privileged user to access a URL with malicious code to take over said user’s account.This vulnerability ...
Ui Unifi Protect
6.5
CVSSv2
CVE-2021-22952
A vulnerability found in UniFi Talk application V1.12.3 and previous versions permits a malicious actor who has already gained access to a network to subsequently control Talk device(s) assigned to said network if they are not yet adopted. This vulnerability is fixed in UniFi Tal...
Ui Unifi Talk
8.3
CVSSv2
CVE-2021-22943
A vulnerability found in UniFi Protect application V1.18.1 and previous versions permits a malicious actor who has already gained access to a network to subsequently control the Protect camera(s) assigned to said network. This vulnerability is fixed in UniFi Protect application V...
Ui Unifi Protect
7.7
CVSSv2
CVE-2021-22944
A vulnerability found in UniFi Protect application V1.18.1 and previous versions allows a malicious actor with a view-only role and network access to gain the same privileges as the owner of the UniFi Protect application. This vulnerability is fixed in UniFi Protect application V...
Ui Unifi Protect
5
CVSSv2
CVE-2021-33818
An issue exists in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-o...
Ui Camera G3 Flex Firmware Uvc.v4.30.0.67
5
CVSSv2
CVE-2021-33820
An issue exists in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.
Ui Camera G3 Flex Firmware Uvc.v4.30.0.67
6.9
CVSSv2
CVE-2020-24755
In Ubiquiti UniFi Video v3.10.13, when the executable starts, its first library validation is in the current directory. This allows the impersonation and modification of the library to execute code on the system. This was tested in (Windows 7 x64/Windows 10 x64).
Ui Unifi Video 3.10.13
5
CVSSv2
CVE-2021-22882
UniFi Protect before v1.17.1 allows an malicious user to use spoofed cameras to perform a denial-of-service attack that may cause the UniFi Protect controller to crash.
Ui Unifi Protect Controller
5
CVSSv2
CVE-2020-8267
A security issue was found in UniFi Protect controller v1.14.10 and previous versions.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing malicious users to use the API to send authenticated messages without a valid token.Th...
Ui Unifi Protect Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »