8 matches found
CVE-2015-9266
CVE-2015-9266 affects Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP (TOUGHSwitch). The web management interface allows an unauthenticated attacker to upload/write arbitrary files via directory traversal, potentially gaining root privileges. Affected products/versions were fixed in July ...
Directory traversal
The web management interface of Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP formerly TOUGHSwitch allows an unauthenticated attacker to upload and write arbitrary files using directory traversal techniques. An attacker can exploit this vulnerability to gain root privileges. This...
CVE-2015-9266
The web management interface of Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP formerly TOUGHSwitch allows an unauthenticated attacker to upload and write arbitrary files using directory traversal techniques. An attacker can exploit this vulnerability to gain root privileges. This...
Ubiquiti Administration Portal - Remote Command Execution (via Cross-Site Request Forgery)
Ubiquiti Administration Portal - Remote Command Execution via Cross-Site Request Forgery !-- KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution Title: Ubiquiti Administration Portal CSRF to Remote Command Execution Advisory ID: KL-001-2016-002 Publication Date:...
Ubiquiti Administration Portal CSRF / Remote Command Execution
KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution Title: Ubiquiti Administration Portal CSRF to Remote Command Execution Advisory ID: KL-001-2016-002 Publication Date: 2016.06.28 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2016-002.txt 1...
Ubiquiti Administration Portal - Remote Command Execution (via Cross-Site Request Forgery)
Exploit for hardware platform in category web applications !-- KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution Title: Ubiquiti Administration Portal CSRF to Remote Command Execution Advisory ID: KL-001-2016-002 Publication Date: 2016.06.28 Publication URL:...
Ubiquiti Administration Portal - Remote Command Execution (via Cross-Site Request Forgery)
!-- KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution Title: Ubiquiti Administration Portal CSRF to Remote Command Execution Advisory ID: KL-001-2016-002 Publication Date: 2016.06.28 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2016-002.tx...
Ubiquiti Network Gear Targeted By Worm
ISP equipment maker Ubiquiti Networks is fending off a stubborn worm targeting its networking equipment running outdated AirOS firmware. According to security experts, the worm is already being blamed for crippling networking gear in the Argentina, Brazil, Spain and the United States. Ubiquiti...