Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2023/10/25 6:17 p.m.19 views

CVE-2023-41721

Instances of UniFi Network Application that i are run on a UniFi Gateway Console, and ii are versions 7.5.176. and earlier, implement device adoption with improper access control logic, creating a risk of access to device configuration information by a malicious actor with preexisting access to t...

10CVSS6.3AI score0.00239EPSS
Exploits0References1
CVE
CVEadded 2023/10/25 12:24 a.m.74 views

CVE-2023-41721

CVE-2023-41721: Affects UniFi Network Application run on a UniFi Gateway Console with versions 7.5.176 and earlier, exposing an improper access control flaw in device adoption. This could allow a malicious actor with preexisting network access to reach device configuration information. Affected p...

10CVSS9.1AI score0.00239EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2020/11/05 7:15 p.m.1 views

CVE-2020-8267

A security issue was found in UniFi Protect controller v1.14.10 and earlier.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing attackers to use the API to send authenticated messages without a valid token.This vulnerability was fixed in UniFi Protect...

5.3CVSS6AI score
Exploits0References3
NVD
NVDadded 2020/11/05 7:15 p.m.14 views

CVE-2020-8267

A security issue was found in UniFi Protect controller v1.14.10 and earlier.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing attackers to use the API to send authenticated messages without a valid token.This vulnerability was fixed in UniFi Protect...

5.3CVSS5.4AI score0.00278EPSS
Exploits0References3
Prion
Prionadded 2020/11/05 7:15 p.m.22 views

Security feature bypass

A security issue was found in UniFi Protect controller v1.14.10 and earlier.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing attackers to use the API to send authenticated messages without a valid token.This vulnerability was fixed in UniFi Protect...

5CVSS5.4AI score0.00278EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2020/11/05 6:28 p.m.12 views

CVE-2020-8267

A security issue was found in UniFi Protect controller v1.14.10 and earlier.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing attackers to use the API to send authenticated messages without a valid token.This vulnerability was fixed in UniFi Protect...

5.3AI score0.00278EPSS
Exploits0References3
CVE
CVEadded 2020/11/05 6:28 p.m.40 views

CVE-2020-8267

CVE-2020-8267 affects UniFi Protect controller up to v1.14.10. The root cause is improper use of the access token in the controller API, allowing attackers to send authenticated messages without a valid token. The issue is fixed in UniFi Protect v1.14.11 and newer. Impact notes: it does not affec...

5.3CVSS5.3AI score0.00278EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder