Skip to main content

Ubiquiti

125 CVEs vendor

Monthly

CVE-2022-22570 CRITICAL Act Now

A buffer overflow vulnerability found in the UniFi Door Access Reader Lite’s (UA Lite) firmware (Version 3.8.28.24 and earlier) allows a malicious actor who has gained access to a network to control. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Ubiquiti Ua Lite Firmware
NVD
CVSS 3.1
10.0
EPSS
1.0%
CVE-2021-44527 MEDIUM This Month

A vulnerability found in UniFi Switch firmware Version 5.43.35 and earlier allows a malicious actor who has already gained access to the network to perform a Deny of Service (DoS) attack on the. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Denial Of Service Unifi Switch Firmware
NVD
CVSS 3.1
6.5
EPSS
0.4%
CVE-2021-22957 HIGH PATCH This Week

A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and earlier allows a malicious actor who has convinced a privileged user to access a URL with. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Ubiquiti Information Disclosure Unifi Protect
NVD
CVSS 3.1
8.8
EPSS
0.9%
CVE-2021-22952 HIGH This Week

A vulnerability found in UniFi Talk application V1.12.3 and earlier permits a malicious actor who has already gained access to a network to subsequently control Talk device(s) assigned to said. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Ubiquiti RCE Code Injection Unifi Talk
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2021-22944 HIGH This Week

A vulnerability found in UniFi Protect application V1.18.1 and earlier allows a malicious actor with a view-only role and network access to gain the same privileges as the owner of the UniFi Protect. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

Ubiquiti Information Disclosure Unifi Protect
NVD
CVSS 3.1
8.0
EPSS
0.4%
CVE-2021-22943 CRITICAL Act Now

A vulnerability found in UniFi Protect application V1.18.1 and earlier permits a malicious actor who has already gained access to a network to subsequently control the Protect camera(s) assigned to. Rated critical severity (CVSS 9.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Authentication Bypass Unifi Protect
NVD
CVSS 3.1
9.6
EPSS
0.4%
CVE-2021-33820 HIGH POC This Week

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Information Disclosure Camera G3 Flex Firmware
NVD GitHub
CVSS 3.1
7.5
EPSS
1.9%
CVE-2021-33818 HIGH POC This Week

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Denial Of Service Camera G3 Flex Firmware
NVD GitHub
CVSS 3.1
7.5
EPSS
1.9%
CVE-2021-22882 HIGH This Week

UniFi Protect before v1.17.1 allows an attacker to use spoofed cameras to perform a denial-of-service attack that may cause the UniFi Protect controller to crash. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Denial Of Service Unifi Protect Controller
NVD
CVSS 3.1
7.5
EPSS
1.3%
CVE-2020-8267 MEDIUM PATCH This Month

A security issue was found in UniFi Protect controller v1.14.10 and earlier.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing attackers to use the API to. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Ubiquiti Authentication Bypass Unifi Protect Firmware
NVD
CVSS 3.1
5.3
EPSS
1.2%
CVE-2020-27888 HIGH This Week

An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Information Disclosure Unifi Meshing Access Point Firmware Unifi Controller Firmware
NVD
CVSS 3.1
7.5
EPSS
1.0%
CVE-2020-8213 MEDIUM This Month

An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Information Disclosure Unifi Protect
NVD
CVSS 3.1
5.3
EPSS
1.1%
CVE-2020-8188 HIGH This Week

We have recently released new version of UniFi Protect firmware v1.13.3 and v1.14.10 for Unifi Cloud Key Gen2 Plus and UniFi Dream Machine Pro/UNVR respectively that fixes vulnerabilities found on. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Ubiquiti Command Injection Unifi Protect Firmware
NVD
CVSS 3.1
8.8
EPSS
1.3%
CVE-2020-8157 MEDIUM This Month

UniFi Cloud Key firmware <= v1.1.10 for Cloud Key gen2 and Cloud Key gen2 Plus contains a vulnerability that allows unrestricted root access through the serial interface (UART). Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Authentication Bypass Unifi Cloud Key Gen2 Firmware Unifi Cloud Key Gen2 Plus Firmware
NVD
CVSS 3.1
6.8
EPSS
0.3%
CVE-2020-8148 MEDIUM PATCH This Month

UniFi Cloud Key firmware < 1.1.6 contains a vulnerability that enables an attacker being able to change a device hostname by sending a malicious API request. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Ubiquiti Authentication Bypass Cloud Key Gen2 Cloud Key Gen2 Plus
NVD
CVSS 3.1
5.3
EPSS
1.0%
CVE-2020-8146 HIGH This Week

In UniFi Video v3.10.1 (for Windows 7/8/10 x64) there is a Local Privileges Escalation to SYSTEM from arbitrary file deletion and DLL hijack vulnerabilities. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Privilege Escalation Microsoft Unifi Video
NVD
CVSS 3.1
7.8
EPSS
0.5%
CVE-2020-8145 MEDIUM This Month

The UniFi Video Server (Windows) web interface configuration restore functionality at the “backup” and “wizard” endpoints does not implement sufficient privilege checks. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Ubiquiti Microsoft Information Disclosure Unifi Video
NVD
CVSS 3.1
6.5
EPSS
1.1%
CVE-2020-8144 HIGH This Week

The UniFi Video Server v3.9.3 and prior (for Windows 7/8/10 x64) web interface Firmware Update functionality, under certain circumstances, does not validate firmware download destinations to ensure. Rated high severity (CVSS 8.4), this vulnerability is low attack complexity. No vendor patch available.

Ubiquiti Microsoft Path Traversal Unifi Video
NVD
CVSS 3.1
8.4
EPSS
0.7%
CVE-2019-15595 HIGH This Week

A privilege escalation exists in UniFi Video Controller =<3.10.6 that would allow an attacker on the local machine to run arbitrary commands. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Ubiquiti Command Injection Unifi Video Controller
NVD
CVSS 3.1
8.8
EPSS
1.7%
CVE-2019-16889 HIGH POC PATCH This Week

Ubiquiti EdgeMAX devices before 2.0.3 allow remote attackers to cause a denial of service (disk consumption) because *.cache files in /var/run/beaker/container_file/ are created when providing a. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Ubiquiti Er X Firmware Er X Sfp Firmware Ep R6 Firmware +9
NVD
CVSS 3.1
7.5
EPSS
5.1%
CVE-2019-9270 HIGH This Week

In the Android kernel in unifi and r8180 WiFi drivers there is a possible out of bounds write due to a missing bounds check. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Ubiquiti Memory Corruption Google +1
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2019-5456 HIGH This Week

SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= 5.10.21 and their actual SMTP server to record their SMTP credentials for malicious use. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Ubiquiti Information Disclosure Unifi Controller
NVD
CVSS 3.1
8.1
EPSS
1.3%
CVE-2019-12727 HIGH POC This Week

On Ubiquiti airCam 3.1.4 devices, a Denial of Service vulnerability exists in the RTSP Service provided by the ubnt-streamer binary. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Buffer Overflow Ubiquiti Information Disclosure Aircam Firmware
NVD GitHub
CVSS 3.0
7.5
EPSS
1.5%
CVE-2019-5430 HIGH This Week

In UniFi Video 3.10.0 and prior, due to the lack of CSRF protection, it is possible to abuse the Web API to make changes on the server configuration without the user consent, requiring the attacker. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti CSRF Unifi Video
NVD
CVSS 3.0
8.8
EPSS
0.7%
CVE-2019-5426 MEDIUM PATCH This Month

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated user can use the "local port forwarding" and "dynamic port forwarding" (SOCKS proxy) functionalities. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Ubiquiti Edgeswitch X
NVD
CVSS 3.1
4.8
EPSS
0.8%
CVE-2019-5425 HIGH PATCH This Week

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an authenticated user can execute arbitrary shell commands over the SSH interface bypassing the CLI interface, which allow them to escalate. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Ubiquiti Command Injection Edgeswitch X
NVD
CVSS 3.0
8.8
EPSS
1.9%
CVE-2019-5424 HIGH PATCH This Week

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, a privileged user can execute arbitrary shell commands over the SSH CLI interface. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Command Injection vulnerability could allow attackers to inject arbitrary commands into system command execution.

Ubiquiti Command Injection Edgeswitch X
NVD
CVSS 3.1
8.8
EPSS
1.9%
CVE-2018-12591 HIGH This Week

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an improperly neutralized element in an OS command due to lack of protection on the admin CLI, leading to code execution and privilege. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation RCE Ubiquiti Command Injection Edgeswitch Firmware
NVD
CVSS 3.0
7.2
EPSS
1.9%
CVE-2018-12590 HIGH This Week

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an externally controlled format-string vulnerability due to lack of protection on the admin CLI, leading to code execution and. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation RCE Ubiquiti Edgeswitch Firmware
NVD
CVSS 3.1
7.2
EPSS
1.7%
CVE-2016-6914 HIGH POC This Week

Ubiquiti UniFi Video before 3.8.0 for Windows uses weak permissions for the installation directory, which allows local users to gain SYSTEM privileges via a Trojan horse taskkill.exe file. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Microsoft Privilege Escalation Unifi Video
NVD Exploit-DB
CVSS 3.1
7.8
EPSS
0.9%
CVE-2016-7792 HIGH POC This Week

Ubiquiti Networks UniFi 5.2.7 does not restrict access to the database, which allows remote attackers to modify the database by directly connecting to it. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Authentication Bypass Unifi Ap Ac Lite Firmware
NVD VulDB
CVSS 3.0
8.8
EPSS
0.9%
CVE-2014-2226 LOW Monitor

Ubiquiti UniFi Controller before 3.2.1 logs the administrative password hash in syslog messages, which allows man-in-the-middle attackers to obtain sensitive information via unspecified vectors. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable. No vendor patch available.

Ubiquiti Authentication Bypass Unifi Controller
NVD
CVSS 2.0
2.6
EPSS
0.3%
CVE-2014-2227 MEDIUM POC This Month

The default Flash cross-domain policy (crossdomain.xml) in Ubiquiti Networks UniFi Video (formerly AirVision aka AirVision Controller) before 3.0.1 does not restrict access to the application, which. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Privilege Escalation Ubiquiti Unifi Video
NVD Exploit-DB
CVSS 2.0
6.0
EPSS
1.5%
CVE-2013-3572 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the administer interface in the UniFi Controller in Ubiquiti Networks UniFi 2.3.5 and earlier allows remote attackers to inject arbitrary web script or. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti XSS Unifi Controller
NVD
CVSS 3.1
6.1
EPSS
0.5%
CVE-2013-1606 HIGH POC THREAT Act Now

Buffer overflow in the ubnt-streamer RTSP service on the Ubiquiti UBNT AirCam with airVision firmware before 1.1.6 allows remote attackers to execute arbitrary code via a long rtsp: URI in a DESCRIBE. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 21.8%.

Buffer Overflow RCE Ubiquiti Airvision Firmware Aircam +2
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
21.8%
EPSS 1% CVSS 10.0
CRITICAL Act Now

A buffer overflow vulnerability found in the UniFi Door Access Reader Lite’s (UA Lite) firmware (Version 3.8.28.24 and earlier) allows a malicious actor who has gained access to a network to control. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Ubiquiti Ua Lite Firmware
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

A vulnerability found in UniFi Switch firmware Version 5.43.35 and earlier allows a malicious actor who has already gained access to the network to perform a Deny of Service (DoS) attack on the. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Denial Of Service Unifi Switch Firmware
NVD
EPSS 1% CVSS 8.8
HIGH PATCH This Week

A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and earlier allows a malicious actor who has convinced a privileged user to access a URL with. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Ubiquiti Information Disclosure Unifi Protect
NVD
EPSS 1% CVSS 8.8
HIGH This Week

A vulnerability found in UniFi Talk application V1.12.3 and earlier permits a malicious actor who has already gained access to a network to subsequently control Talk device(s) assigned to said. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Ubiquiti RCE Code Injection +1
NVD
EPSS 0% CVSS 8.0
HIGH This Week

A vulnerability found in UniFi Protect application V1.18.1 and earlier allows a malicious actor with a view-only role and network access to gain the same privileges as the owner of the UniFi Protect. Rated high severity (CVSS 8.0), this vulnerability is low attack complexity. No vendor patch available.

Ubiquiti Information Disclosure Unifi Protect
NVD
EPSS 0% CVSS 9.6
CRITICAL Act Now

A vulnerability found in UniFi Protect application V1.18.1 and earlier permits a malicious actor who has already gained access to a network to subsequently control the Protect camera(s) assigned to. Rated critical severity (CVSS 9.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Authentication Bypass Unifi Protect
NVD
EPSS 2% CVSS 7.5
HIGH POC This Week

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Information Disclosure Camera G3 Flex Firmware
NVD GitHub
EPSS 2% CVSS 7.5
HIGH POC This Week

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Denial Of Service Camera G3 Flex Firmware
NVD GitHub
EPSS 1% CVSS 7.5
HIGH This Week

UniFi Protect before v1.17.1 allows an attacker to use spoofed cameras to perform a denial-of-service attack that may cause the UniFi Protect controller to crash. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Denial Of Service Unifi Protect Controller
NVD
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

A security issue was found in UniFi Protect controller v1.14.10 and earlier.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing attackers to use the API to. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Ubiquiti Authentication Bypass Unifi Protect Firmware
NVD
EPSS 1% CVSS 7.5
HIGH This Week

An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Information Disclosure Unifi Meshing Access Point Firmware +1
NVD
EPSS 1% CVSS 5.3
MEDIUM This Month

An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Information Disclosure Unifi Protect
NVD
EPSS 1% CVSS 8.8
HIGH This Week

We have recently released new version of UniFi Protect firmware v1.13.3 and v1.14.10 for Unifi Cloud Key Gen2 Plus and UniFi Dream Machine Pro/UNVR respectively that fixes vulnerabilities found on. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Ubiquiti Command Injection Unifi Protect Firmware
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

UniFi Cloud Key firmware <= v1.1.10 for Cloud Key gen2 and Cloud Key gen2 Plus contains a vulnerability that allows unrestricted root access through the serial interface (UART). Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Authentication Bypass Unifi Cloud Key Gen2 Firmware +1
NVD
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

UniFi Cloud Key firmware < 1.1.6 contains a vulnerability that enables an attacker being able to change a device hostname by sending a malicious API request. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Ubiquiti Authentication Bypass Cloud Key Gen2 +1
NVD
EPSS 1% CVSS 7.8
HIGH This Week

In UniFi Video v3.10.1 (for Windows 7/8/10 x64) there is a Local Privileges Escalation to SYSTEM from arbitrary file deletion and DLL hijack vulnerabilities. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Ubiquiti Privilege Escalation Microsoft +1
NVD
EPSS 1% CVSS 6.5
MEDIUM This Month

The UniFi Video Server (Windows) web interface configuration restore functionality at the “backup” and “wizard” endpoints does not implement sufficient privilege checks. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Ubiquiti Microsoft Information Disclosure +1
NVD
EPSS 1% CVSS 8.4
HIGH This Week

The UniFi Video Server v3.9.3 and prior (for Windows 7/8/10 x64) web interface Firmware Update functionality, under certain circumstances, does not validate firmware download destinations to ensure. Rated high severity (CVSS 8.4), this vulnerability is low attack complexity. No vendor patch available.

Ubiquiti Microsoft Path Traversal +1
NVD
EPSS 2% CVSS 8.8
HIGH This Week

A privilege escalation exists in UniFi Video Controller =<3.10.6 that would allow an attacker on the local machine to run arbitrary commands. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Privilege Escalation Ubiquiti Command Injection +1
NVD
EPSS 5% CVSS 7.5
HIGH POC PATCH This Week

Ubiquiti EdgeMAX devices before 2.0.3 allow remote attackers to cause a denial of service (disk consumption) because *.cache files in /var/run/beaker/container_file/ are created when providing a. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Ubiquiti Er X Firmware +11
NVD
EPSS 0% CVSS 7.8
HIGH This Week

In the Android kernel in unifi and r8180 WiFi drivers there is a possible out of bounds write due to a missing bounds check. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Buffer Overflow Ubiquiti +3
NVD
EPSS 1% CVSS 8.1
HIGH This Week

SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= 5.10.21 and their actual SMTP server to record their SMTP credentials for malicious use. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Ubiquiti Information Disclosure Unifi Controller
NVD
EPSS 1% CVSS 7.5
HIGH POC This Week

On Ubiquiti airCam 3.1.4 devices, a Denial of Service vulnerability exists in the RTSP Service provided by the ubnt-streamer binary. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Buffer Overflow Ubiquiti +2
NVD GitHub
EPSS 1% CVSS 8.8
HIGH This Week

In UniFi Video 3.10.0 and prior, due to the lack of CSRF protection, it is possible to abuse the Web API to make changes on the server configuration without the user consent, requiring the attacker. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti CSRF Unifi Video
NVD
EPSS 1% CVSS 4.8
MEDIUM PATCH This Month

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an unauthenticated user can use the "local port forwarding" and "dynamic port forwarding" (SOCKS proxy) functionalities. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Authentication Bypass Ubiquiti Edgeswitch X
NVD
EPSS 2% CVSS 8.8
HIGH PATCH This Week

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, an authenticated user can execute arbitrary shell commands over the SSH interface bypassing the CLI interface, which allow them to escalate. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Ubiquiti Command Injection Edgeswitch X
NVD
EPSS 2% CVSS 8.8
HIGH PATCH This Week

In Ubiquiti Networks EdgeSwitch X v1.1.0 and prior, a privileged user can execute arbitrary shell commands over the SSH CLI interface. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. This Command Injection vulnerability could allow attackers to inject arbitrary commands into system command execution.

Ubiquiti Command Injection Edgeswitch X
NVD
EPSS 2% CVSS 7.2
HIGH This Week

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an improperly neutralized element in an OS command due to lack of protection on the admin CLI, leading to code execution and privilege. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation RCE Ubiquiti +2
NVD
EPSS 2% CVSS 7.2
HIGH This Week

Ubiquiti Networks EdgeSwitch version 1.7.3 and prior suffer from an externally controlled format-string vulnerability due to lack of protection on the admin CLI, leading to code execution and. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation RCE Ubiquiti +1
NVD
EPSS 1% CVSS 7.8
HIGH POC This Week

Ubiquiti UniFi Video before 3.8.0 for Windows uses weak permissions for the installation directory, which allows local users to gain SYSTEM privileges via a Trojan horse taskkill.exe file. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Microsoft Privilege Escalation +1
NVD Exploit-DB
EPSS 1% CVSS 8.8
HIGH POC This Week

Ubiquiti Networks UniFi 5.2.7 does not restrict access to the database, which allows remote attackers to modify the database by directly connecting to it. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Authentication Bypass Unifi Ap Ac Lite Firmware
NVD VulDB
EPSS 0% CVSS 2.6
LOW Monitor

Ubiquiti UniFi Controller before 3.2.1 logs the administrative password hash in syslog messages, which allows man-in-the-middle attackers to obtain sensitive information via unspecified vectors. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable. No vendor patch available.

Ubiquiti Authentication Bypass Unifi Controller
NVD
EPSS 2% CVSS 6.0
MEDIUM POC This Month

The default Flash cross-domain policy (crossdomain.xml) in Ubiquiti Networks UniFi Video (formerly AirVision aka AirVision Controller) before 3.0.1 does not restrict access to the application, which. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Privilege Escalation Ubiquiti Unifi Video
NVD Exploit-DB
EPSS 0% CVSS 6.1
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the administer interface in the UniFi Controller in Ubiquiti Networks UniFi 2.3.5 and earlier allows remote attackers to inject arbitrary web script or. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Ubiquiti XSS Unifi Controller
NVD
EPSS 22% CVSS 7.5
HIGH POC THREAT Act Now

Buffer overflow in the ubnt-streamer RTSP service on the Ubiquiti UBNT AirCam with airVision firmware before 1.1.6 allows remote attackers to execute arbitrary code via a long rtsp: URI in a DESCRIBE. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 21.8%.

Buffer Overflow RCE Ubiquiti +4
NVD Exploit-DB
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy