Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui unifi firmware - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-35085
An integer overflow vulnerability in all UniFi Access Points and Switches, excluding the Switch Flex Mini, with SNMP Monitoring and default settings enabled could allow a Remote Code Execution (RCE). Affected Products: All UniFi Access Points (Version 6.5.50 and previous versions...
Ui Unifi Uap Firmware
Ui Unifi Switch Firmware
NA
CVE-2023-38034
A command injection vulnerability in the DHCP Client function of all UniFi Access Points and Switches, excluding the Switch Flex Mini, could allow a Remote Code Execution (RCE). Affected Products: All UniFi Access Points (Version 6.5.53 and previous versions) All UniFi Switches (...
Ui Unifi Uap Firmware
Ui Unifi Switch Firmware
5
CVSSv2
CVE-2020-27888
An issue exists on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Cached credentials are not erased from an access point returning wirelessly from a disconnected state. This may provide unintended network access.
Ui Unifi Meshing Access Point Firmware 4.3.21.11325
Ui Unifi Controller Firmware 6.0.28
7.2
CVSSv2
CVE-2020-8157
UniFi Cloud Key firmware <= v1.1.10 for Cloud Key gen2 and Cloud Key gen2 Plus contains a vulnerability that allows unrestricted root access through the serial interface (UART).
Ui Unifi Cloud Key Gen2 Firmware
Ui Unifi Cloud Key Gen2 Plus Firmware
4.3
CVSSv2
CVE-2018-5264
Ubiquiti UniFi 52 devices, when Hotspot mode is used, allow remote malicious users to bypass intended restrictions on "free time" Wi-Fi usage by sending a /guest/s/default/ request to obtain a cookie, and then using this cookie in a /guest/s/default/login request with t...
Ui Unifi Firmware -
6.5
CVSSv2
CVE-2020-8188
We have recently released new version of UniFi Protect firmware v1.13.3 and v1.14.10 for Unifi Cloud Key Gen2 Plus and UniFi Dream Machine Pro/UNVR respectively that fixes vulnerabilities found on Protect firmware v1.13.2, v1.14.9 and prior according to the description below:View...
Ui Unifi Protect Firmware
5
CVSSv2
CVE-2020-8267
A security issue was found in UniFi Protect controller v1.14.10 and previous versions.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing malicious users to use the API to send authenticated messages without a valid token.Th...
Ui Unifi Protect Firmware
6.1
CVSSv2
CVE-2021-44527
A vulnerability found in UniFi Switch firmware Version 5.43.35 and previous versions allows a malicious actor who has already gained access to the network to perform a Deny of Service (DoS) attack on the affected switch.This vulnerability is fixed in UniFi Switch firmware 5.76.6 ...
Ui Unifi Switch Firmware
NA
CVE-2023-24104
Ubiquiti Networks UniFi Dream Machine Pro v7.2.95 allows malicious users to bypass domain restrictions via crafted packets.
Ui Unifi Dream Machine Pro Firmware 7.2.95
5.2
CVSSv2
CVE-2020-8144
The UniFi Video Server v3.9.3 and prior (for Windows 7/8/10 x64) web interface Firmware Update functionality, under certain circumstances, does not validate firmware download destinations to ensure they are within the intended destination directory tree. It accepts a request with...
Ui Unifi Video
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »