CVE-2020-8267
CVE-2020-8267 affects UniFi Protect controller up to v1.14.10. The root cause is improper use of the access token in the controller API, allowing attackers to send authenticated messages without a valid token. The issue is fixed in UniFi Protect v1.14.11 and newer. Impact notes: it does not affec...