Skip to main content

Cloud Key Gen2

1 CVEs product

Monthly

CVE-2020-8148 MEDIUM PATCH This Month

UniFi Cloud Key firmware < 1.1.6 contains a vulnerability that enables an attacker being able to change a device hostname by sending a malicious API request. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Ubiquiti Authentication Bypass Cloud Key Gen2 Cloud Key Gen2 Plus
NVD
CVSS 3.1
5.3
EPSS
1.0%
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

UniFi Cloud Key firmware < 1.1.6 contains a vulnerability that enables an attacker being able to change a device hostname by sending a malicious API request. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Ubiquiti Authentication Bypass Cloud Key Gen2 +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy