Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

RedhatCVE
RedhatCVEadded 2025/05/23 6:2 a.m.3 views

CVE-2023-28361

A Cross-site WebSocket Hijacking CSWSH vulnerability found in UniFi OS 2.5 and earlier allows a malicious actor to access certain confidential information by persuading a UniFi OS user to visit a malicious webpage.Affected Products:Cloud Key Gen2Cloud Key Gen2 PlusUNVRUNVR ProfessionalUDMUDM...

6.5CVSS6.5AI score0.0016EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:20 a.m.4 views

CVE-2023-24104

Ubiquiti Networks UniFi Dream Machine Pro v7.2.95 allows attackers to bypass domain restrictions via crafted packets...

9.8CVSS6.9AI score0.00232EPSS
Exploits1References1
OSV
OSVadded 2023/10/25 6:17 p.m.1 views

CVE-2023-41721

Instances of UniFi Network Application that i are run on a UniFi Gateway Console, and ii are versions 7.5.176. and earlier, implement device adoption with improper access control logic, creating a risk of access to device configuration information by a malicious actor with preexisting access to t...

5.3CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2023/02/23 4:15 p.m.80 views

CVE-2023-24104

Ubiquiti Networks UniFi Dream Machine Pro v7.2.95 allows attackers to bypass domain restrictions via crafted packets...

9.8CVSS9.4AI score0.00232EPSS
Exploits1References2
CVE
CVEadded 2023/02/23 12:0 a.m.172 views

CVE-2023-24104

CVE-2023-24104 affects Ubiquiti Networks UniFi Dream Machine Pro firmware up to at least v7.2.95 . The vulnerability arises from a flaw that allows attackers to bypass domain restrictions via crafted packets . The CVSSv3.1 metrics indicate a network-based , low complexity attack with no privilege...

9.8CVSS9.3AI score0.00232EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/02/23 12:0 a.m.3 views

CVE-2023-24104

Ubiquiti Networks UniFi Dream Machine Pro v7.2.95 allows attackers to bypass domain restrictions via crafted packets...

6.9AI score0.00232EPSS
Exploits1References2
CNNVD
CNNVDadded 2023/02/23 12:0 a.m.2 views

Ubiquiti Networks UniFi Dream Machine 安全漏洞

Ubiquiti Networks UniFi Dream Machine is a home switch from Ubiquiti USA. A security vulnerability exists in Ubiquiti Networks UniFi Dream Machine Pro version v7.2.95, which stems from a vulnerability that allows an attacker to bypass domain restrictions via crafted packets...

9.8CVSS8.4AI score0.00232EPSS
Exploits1References3
Cvelist
Cvelistadded 2023/02/23 12:0 a.m.11 views

CVE-2023-24104

Ubiquiti Networks UniFi Dream Machine Pro v7.2.95 allows attackers to bypass domain restrictions via crafted packets...

9.6AI score0.00232EPSS
Exploits1References2
CVE
CVEadded 2020/07/02 6:35 p.m.66 views

CVE-2020-8188

CVE-2020-8188 relates to UniFi Protect firmware. Multiple sources confirm a privilege-escalation issue where “view only” users could run certain custom commands to assign themselves unauthorized roles, leading to elevated privileges. The vulnerability affects Protect firmware v1.13.2 and v1.14.9 ...

8.8CVSS9.1AI score0.00944EPSS
Exploits0References3Affected Software1
Hacker One
Hacker Oneadded 2020/03/21 2:54 a.m.19 views

Ubiquiti Inc.: View Only to Root Privilege Escalation on UniFi Protect

UniFi Protect v1.13.2 and prior containing vulnerabilities allowing users to run certain custom commands that can be used to assign themselves unauthorized roles, escalating their privileges. These vulnerabilities were found on UniFi Protect v1.13.2 and prior versions for Cloud Key Gen2 plus. The...

2.4AI score
Exploits0
Rows per page
Query Builder