Vulnerabilidades em Ubiquiti
18 resultadosCVE-2023-2375MEDIUMUbiquiti EdgeRouter X Web Management Interface command injectionEPSS 6.6%CVE-2023-2374MEDIUMUbiquiti EdgeRouter X Web Management Interface command injectionEPSS 4.5%CVE-2023-2373MEDIUMUbiquiti EdgeRouter X Web Management Interface command injectionEPSS 4.3%CVE-2023-2377MEDIUMUbiquiti EdgeRouter X Web Management Interface command injectionEPSS 4.3%CVE-2023-2378MEDIUMUbiquiti EdgeRouter X Web Management Interface command injectionEPSS 4.3%CVE-2023-2376MEDIUMUbiquiti EdgeRouter X Web Management Interface command injectionEPSS 4.3%CVE-2023-1458HIGHA vulnerability has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6 and classified as critical. Affected by this vulnerability is an unknEPSS 3.3%CVE-2023-1456HIGHA vulnerability, which was classified as critical, has been found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6. This issue affects some unknown pEPSS 1.9%CVE-2023-1457HIGHA vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X 2.0.9-hotfix.6. Affected is an unknown function of theEPSS 1.9%CVE-2023-2379HIGHUbiquiti EdgeRouter X Web Service denial of serviceEPSS 1.3%CVE-2023-31998MEDIUMA heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices.EPSS 0.7%CVE-2023-41721CRITICALInstances of UniFi Network Application that (i) are run on a UniFi Gateway Console, and (ii) are versions 7.5.176. and earlier, implement deEPSS 0.6%CVE-2023-32000—A Cross-Site Scripting (XSS) vulnerability found in UniFi Network (Version 7.3.83 and earlier) allows a malicious actor with Site AdministraEPSS 0.3%CVE-2024-37380MEDIUMA misconfiguration on UniFi U6+ Access Point could cause an incorrect VLAN traffic forwarding to APs meshed to UniFi U6+ Access Point.
AffEPSS 0.2%CVE-2024-34786MEDIUMUniFi iOS app 10.15.0 introduces a misconfiguration on 2nd Generation UniFi Access Points configured as standalone (not using UniFi Network EPSS 0.2%CVE-2024-45205HIGHAn Improper Certificate Validation on the UniFi iOS App managing a standalone UniFi Access Point (not using UniFi Network Application) couldEPSS 0.1%CVE-2019-25652HIGHUniFi Network Controller Improper Certificate Validation Leading to Credential Theft via MITMEPSS 0.1%CVE-2019-25651CRITICALUbiquiti UniFi Devices Use of AES-CBC Allows Key Recovery and Unauthorized Device ControlEPSS 0.1%