CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

RedhatCVE•added 2026/01/06 5:7 p.m.•2 views

CVE-2026-21635

An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite v1.5.2 and earlier to use WiFi AutoLink feature on a device that was only adopted via Ethernet...

5.3CVSS6.8AI score0.00015EPSS

Exploits0References1

OSV•added 2026/01/05 5:15 p.m.•3 views

CVE-2026-21635

An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite v1.5.2 and earlier to use WiFi AutoLink feature on a device that was only adopted via Ethernet...

6.5CVSS5.8AI score

Exploits0References1

NVD•added 2026/01/05 5:15 p.m.•3 views

CVE-2026-21635

An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite v1.5.2 and earlier to use WiFi AutoLink feature on a device that was only adopted via Ethernet...

6.5CVSS0.00015EPSS

Exploits0References1

EUVD•added 2026/01/05 4:47 p.m.•4 views

EUVD-2026-0830

An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite v1.5.2 and earlier to use WiFi AutoLink feature on a device that was only adopted via Ethernet...

5.3CVSS6.3AI score0.00015EPSS

Exploits0References2

Cvelist•added 2026/01/05 4:47 p.m.•24 views

CVE-2026-21635

An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite v1.5.2 and earlier to use WiFi AutoLink feature on a device that was only adopted via Ethernet...

5.3CVSS0.00015EPSS

Exploits0References1

Positive Technologies•added 2026/01/05 12:0 a.m.•3 views

PT-2026-1310

Name of the Vulnerable Software and Affected Versions EV Station Lite versions prior to 1.5.3 Description An improper access control issue exists in EV Station Lite. A malicious actor within Wi-Fi range could potentially utilize the WiFi AutoLink feature on a device that was initially adopted via...

6.5CVSS6.5AI score0.00015EPSS

Exploits0References5

CNNVD•added 2026/01/05 12:0 a.m.•3 views

Ubiquiti EV Station Lite 安全漏洞

Ubiquiti EV Station Lite is a series of smart electric vehicle charging stations from Ubiquiti USA. A security vulnerability exists in Ubiquiti EV Station Lite v1.5.2 and prior versions, which stems from improper access control and could allow a malicious actor to exploit the WiFi AutoLink featur...

6.5CVSS6.6AI score0.00015EPSS

Exploits0References2

RedhatCVE•added 2025/08/23 12:23 a.m.•3 views

CVE-2025-24285

Multiple Improper Input Validation vulnerabilities in UniFi Connect EV Station Lite may allow a Command Injection by a malicious actor with network access to the UniFi Connect EV Station Lite. Affected Products: UniFi Connect EV Station Lite Version 1.5.1 and earlier Mitigation: Update UniFi...

9.8CVSS7.8AI score0.00504EPSS

Exploits0References1

NVD•added 2025/08/21 1:15 a.m.•3 views

CVE-2025-24285

9.8CVSS0.00504EPSS

Exploits0References1

Cvelist•added 2025/08/21 12:1 a.m.•5 views

CVE-2025-24285

0.00504EPSS

Exploits0References1

Cvelist•added 2025/08/21 12:1 a.m.•9 views

CVE-2025-27213

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect devices to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Pro Version 1.5.18 and earlier UniFi Connect Display Versio...

0.0005EPSS

Exploits0References1

CNNVD•added 2025/08/21 12:0 a.m.•2 views

Ubiquiti多款产品安全漏洞

Ubiquiti UniFi Connect EV Station and others are products of Ubiquiti, Inc.Ubiquiti UniFi Connect EV Station is an electric vehicle station.Ubiquiti UniFi Connect Display is an access control system monitor device. Ubiquiti UniFi Connect Display Cast is a player. A security vulnerability exists i...

4.9CVSS6.5AI score0.0005EPSS

Exploits0References2

CNNVD•added 2025/08/21 12:0 a.m.•1 views

Ubiquiti UniFi Connect EV Station 安全漏洞

Ubiquiti UniFi Connect EV Station is an electric vehicle station from Ubiquiti USA. A security vulnerability exists in Ubiquiti UniFi Connect EV Station version 1.5.1 and prior versions, which stems from improper input validation and could lead to command injection...

9.8CVSS7.8AI score0.00504EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 8:56 a.m.•3 views

CVE-2024-29206

An Improper Access Control could allow a malicious actor authenticated in the API to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Version 1.1.18 and earlier UniFi Connect EV Station Pro Version 1.1.18 and earlier UniFi...

2.2CVSS6.7AI score0.00062EPSS

Exploits0References1

Zero Day Initiative•added 2024/06/21 12:0 a.m.•12 views

(Pwn2Own) Ubiquiti Networks EV Station setDebugPortEnabled Exposed Dangerous Method Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Ubiquiti Networks EV Station. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

8CVSS7.5AI score0.00062EPSS

Exploits0References1

Zero Day Initiative•added 2024/06/21 12:0 a.m.•11 views

(Pwn2Own) Ubiquiti Networks EV Station changeUserPassword Missing Authentication Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Ubiquiti Networks EV Station. Authentication is not required to exploit this vulnerability. The specific flaw exists within the password change functionality. The issue results from the lac...

8.8CVSS7.4AI score0.00081EPSS

Exploits0References1

NVD•added 2024/05/07 5:15 p.m.•7 views

CVE-2024-29208

An Unverified Password Change could allow a malicious actor with API access to the device to change the system password without knowing the previous password. Affected Products: UniFi Connect EV Station Version 1.1.18 and earlier UniFi Connect EV Station Pro Version 1.1.18 and earlier UniFi Conne...

2.2CVSS3.8AI score0.00081EPSS

Exploits0References1

Vulnrichment•added 2024/05/07 4:40 p.m.•16 views

CVE-2024-29208

2.2CVSS7AI score0.00081EPSS

Exploits0References1

CVE•added 2024/05/07 4:40 p.m.•88 views

CVE-2024-29206

CVE-2024-29206 concerns multiple Ubiquiti UniFi devices. The issue is described as an improper access control that, if an attacker is authenticated in the API, can enable Android Debug Bridge (ADB) and make unsupported changes to the system. Affected products and versions include: UniFi Connect E...

2.2CVSS6.5AI score0.00062EPSS

Exploits0References1

Positive Technologies•added 2024/05/07 12:0 a.m.•2 views

PT-2024-22808 · Ubiquiti · Unifi Connect Ev Station Pro +3

Name of the Vulnerable Software and Affected Versions: UniFi Connect Application versions 3.7.9 and earlier UniFi Connect EV Station versions 1.1.18 and earlier UniFi Connect EV Station Pro versions 1.1.18 and earlier UniFi Connect Display versions 1.9.324 and earlier UniFi Connect Display Cast...

7.5CVSS7.4AI score0.00075EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by