RSS   Vulnerabilities for 'Unifi protect'   RSS

2021-11-24
 
CVE-2021-22957

CWE-668
 
 
A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and earlier allows a malicious actor who has convinced a privileged user to access a URL with malicious code to take over said user�??s account.This vulnerability is fixed in UniFi Protect application Version 1.20.0 and later.

 
2020-07-30
 
CVE-2020-8213

CWE-209
 
 
An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP response code and response timing.

 

 >>> Vendor: UI 20 Products
Aircam
Aircam dome
Aircam mini
Airvision firmware
Unifi
Unifi video
Unifi controller
Edgeos
Edgeswitch x
Aircam firmware
Unifi firmware
UCRM
Edgeswitch
Airvision controller
Mfi controller
Cloud key gen2
Cloud key gen2 plus
Unifi protect
Unifi talk
Unifi switch firmware

Copyright 2024, cxsecurity.com

 

Back to Top