Skip to main content

Unifi Controller CVE-2020-12695

HIGH
Incorrect Default Permissions (CWE-276)
2020-06-08 cve@mitre.org
Privilege Escalation Unifi Controller Hostapd Rt N11 Adsl Selphy Cp1200 Wap131 Wap150 Wap351 Dvg N5412Sp B1165Nfw Ep 101 Ew M970A3T M571T Xp 100 Xp 2101 Xp 2105 Xp 241 Xp 320 Xp 330 Xp 340 Xp 4100 Xp 4105 Xp 440 Xp 620 Xp 630 Xp 702 Xp 8500 Xp 8600 Xp 960 Xp 970 5020 Z4A69A 5030 M2U92B 5030 Z4A70A 5034 Z4A74A 5660 F8B04A Deskjet Ink Advantage 3456 A9T84C Deskjet Ink Advantage 3545 A9T81A Deskjet Ink Advantage 3545 A9T81C Deskjet Ink Advantage 3545 A9T83B Deskjet Ink Advantage 3546 A9T82A Deskjet Ink Advantage 3548 A9T81B Deskjet Ink Advantage 4515 Deskjet Ink Advantage 4518 Deskjet Ink Advantage 4535 F0V64A Deskjet Ink Advantage 4535 F0V64B Deskjet Ink Advantage 4535 F0V64C Deskjet Ink Advantage 4536 F0V65A Deskjet Ink Advantage 4538 F0V66B Deskjet Ink Advantage 4675 F1H97A Deskjet Ink Advantage 4675 F1H97B Deskjet Ink Advantage 4675 F1H97C Deskjet Ink Advantage 4676 F1H98A Deskjet Ink Advantage 4678 F1H99B Deskjet Ink Advantage 5575 G0V48B Deskjet Ink Advantage 5575 G0V48C Envy 100 Cn517A Envy 100 Cn517B Envy 100 Cn517C Envy 100 Cn518A Envy 100 Cn519A Envy 100 Cn519B Envy 110 Cq809A Envy 110 Cq809B Envy 110 Cq809C Envy 110 Cq809D Envy 110 Cq812C Envy 111 Cq810A Envy 114 Cq811A Envy 114 Cq811B Envy 114 Cq812A Envy 120 Cz022A Envy 120 Cz022B Envy 120 Cz022C Envy 4500 A9T80A Envy 4500 A9T80B Envy 4500 A9T89A Envy 4500 D3P93A Envy 4501 C8D05A Envy 4502 A9T85A Envy 4502 A9T87B Envy 4503 E6G71B Envy 4504 A9T88B Envy 4504 C8D04A Envy 4505 A9T86A Envy 4507 E6G70B Envy 4508 E6G72B Envy 4509 D3P94A Envy 4509 D3P94B Envy 4511 K9H50A Envy 4512 K9H49A Envy 4513 K9H51A Envy 4516 K9H52A Envy 4520 E6G67A Envy 4520 E6G67B Envy 4520 F0V63A Envy 4520 F0V63B Envy 4520 F0V69A Envy 4521 K9T10B Envy 4522 F0V67A Envy 4523 J6U60B Envy 4524 F0V71B Envy 4524 F0V72B Envy 4524 K9T01A Envy 4525 K9T09B Envy 4526 K9T05B Envy 4527 J6U61B Envy 4528 K9T08B Envy 5000 M2U85A Envy 5000 M2U85B Envy 5000 M2U91A Envy 5000 M2U94B Envy 5000 Z4A54A Envy 5000 Z4A74A Envy 5020 M2U91B Envy 5530 Envy 5531 Envy 5532 Envy 5534 Envy 5535 Envy 5536 Envy 5539 Envy 5540 F2E72A Envy 5540 G0V47A Envy 5540 G0V51A Envy 5540 G0V52A Envy 5540 G0V53A Envy 5540 K7C85A Envy 5541 K7G89A Envy 5542 K7C88A Envy 5543 N9U88A Envy 5544 K7C89A Envy 5544 K7C93A Envy 5545 G0V50A Envy 5546 K7C90A Envy 5547 J6U64A Envy 5548 K7G87A Envy 5640 B9S56A Envy 5640 B9S58A Envy 5642 B9S64A Envy 5643 B9S63A Envy 5644 B9S65A Envy 5646 F8B05A Envy 5664 F8B08A Envy 5665 F8B06A Envy 6020 5Se16B Envy 6020 5Se17A Envy 6020 6Wd35A Envy 6020 7Cz37A Envy 6052 5Se18A Envy 6055 5Se16A Envy 6540 B9S59A Envy 7640 Envy 7644 E4W46A Envy 7645 E4W44A Envy Photo 6200 K7G18A Envy Photo 6200 K7G26B Envy Photo 6200 K7S21B Envy Photo 6200 Y0K13D Envy Photo 6200 Y0K15A Envy Photo 6220 K7G20D Envy Photo 6220 K7G21B Envy Photo 6222 Y0K13D Envy Photo 6222 Y0K14D Envy Photo 6230 K7G25B Envy Photo 6232 K7G26B Envy Photo 6234 K7S21B Envy Photo 6252 K7G22A Envy Photo 7100 3Xd89A Envy Photo 7100 K7G93A Envy Photo 7100 K7G99A Envy Photo 7100 Z3M37A Envy Photo 7100 Z3M52A Envy Photo 7120 Z3M41D Envy Photo 7155 Z3M52A Envy Photo 7164 K7G99A Envy Photo 7800 K7R96A Envy Photo 7800 K7S00A Envy Photo 7800 K7S10D Envy Photo 7800 Y0G42D Envy Photo 7800 Y0G52B Envy Photo 7822 Y0G42D Envy Photo 7822 Y0G43D Envy Photo 7830 Y0G50B Envy Pro 6420 5Se45B Envy Pro 6420 5Se46A Envy Pro 6420 6Wd14A Envy Pro 6420 6Wd16A Envy Pro 6452 5Se47A Envy Pro 6455 5Se45A Officejet 4650 E6G87A Officejet 4650 F1H96A Officejet 4650 F1H96B Officejet 4652 F1J02A Officejet 4652 F1J05B Officejet 4652 K9V84B Officejet 4654 F1J06B Officejet 4654 F1J07B Officejet 4655 F1J00A Officejet 4655 K9V79A Officejet 4655 K9V82B Officejet 4656 K9V81B Officejet 4657 V6D29B Officejet 4658 V6D30B Hg255S Hg532E Wr8165N Wnhde111 Zonedirector 1200 Archer C50 Zxv10 W300 Amg1202 T10B Vmg8324 B10A Windows 10 Xbox One Fedora Debian Linux Ubuntu Linux
7.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.5 HIGH
AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:H
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
Low
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Jun 08, 2020 - 17:15 nvd
HIGH 7.5

DescriptionNVD

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.

AnalysisAI

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Technical ContextAI

This vulnerability is classified as Incorrect Default Permissions (CWE-276), which allows attackers to access resources due to overly permissive default settings. The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. Affected products include: Ui Unifi Controller, W1.Fi Hostapd, Asus Rt-N11, Broadcom Adsl, Canon Selphy Cp1200. Version information: before 2020.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Set restrictive default permissions, follow principle of least privilege, review defaults during deployment.

Share

CVE-2020-12695 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy