2 matches found
CVE-2017-0913
Ubiquiti UCRM versions 2.3.0 to 2.7.7 allow an authenticated user to read arbitrary files in the local file system. Note that by default, the local file system is isolated in a docker container. Successful exploitation requires valid credentials to an account with "Edit" access to "System...
CVE-2017-0913
CVE-2017-0913 affects Ubiquiti UCRM versions 2.3.0–2.7.7. An authenticated user with Edit access to System Customization can read arbitrary files on the local filesystem; note that the container runs in Docker isolation by default. Exploitation requires valid credentials; no exploit details are p...