Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Ubiquiti UbiFi Controller 2.4.5 Password Hash Disclosure

🗓️ 25 Jul 2014 00:00:00Reported by Seth ArtType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 43 Views

Ubiquiti UbiFi Controller 2.4.5 Password Hash Disclosure. Admin password hash sent via syslog messages

Related
Code
ReporterTitlePublishedViews
Family
CVE		CVE-2014-2226
29 Jul 201414:00
cve
Cvelist		CVE-2014-2226
29 Jul 201414:00
cvelist
EUVD		EUVD-2014-2266
7 Oct 202500:30
euvd
NVD		CVE-2014-2226
29 Jul 201414:55
nvd
Prion		Design/Logic Flaw
29 Jul 201414:55
prion
`-----------  
Vendor:  
-----------  
Ubiquiti Networks (http://www.ubnt.com/)  
  
----------------------------------------------  
Affected Products/Versions:  
----------------------------------------------  
UniFi Controller v2.4.6  
Note: Previous versions may be affected  
  
-----------------  
Description:  
-----------------  
Title: Admin/Root password hash sent via syslog messages  
CVE: CVE-2014-2226  
CWE: http://cwe.mitre.org/data/definitions/319.html  
Detailed writeup: http://sethsec.blogspot.com/2014/07/cve-2014-2226.html  
Researcher: Seth Art - @sethsec  
  
If remote logging is enabled on the UniFi controller, syslog messages  
are sent to a syslog server. Contained within the syslog messages is  
the admin password that is used by both the UniFi controller, and all  
managed Access Points. This CVE was assigned as there is no utility  
for sending the admin password hash via syslog messages.  
  
------  
POC:  
------  
Not Applicable.  
  
-------------  
Solution:  
-------------  
UniFi Controller - Upgrade to UniFi Controller v3.2.1 or greater  
  
-----------------------------  
Disclosure Timeline:  
-----------------------------  
2014-02-16: Notified Ubiquiti of vulnerabilities in UniFi and mFi products  
2014-02-17: Ubiquiti acknowledges and requests details  
2014-02-17: Report with POC sent to Ubiquiti  
2014-02-19: Asks Ubiquiti to confirm receipt of report  
2014-02-19: Ubiquti confirms receipt of report and existence of the  
vulnerabilities  
2014-02-28: CVE-2014-2226 assigned  
2014-03-12: Requested status update  
2014-03-27: Requested status update  
2014-04-07: Requested status update  
2014-04-09: Ubiquiti provides timeline for solution  
2014-05-30: Requested status update  
2014-06-12: Requested status update  
2014-06-12: UniFi 3.2.1 is released  
2014-06-13: Set public disclosure date of 2014-07-24  
2014-07-24: Public disclosure  
  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
25 Jul 2014 00:00Current
EPSS0.00294
ubiquiti networksunifi controllercve-2014-2226syslog messagesremote loggingupgradedisclosure timeline
43