27 matches found
CVE-2025-24290
CVE-2025-24290 affects UISP Application versions 2.4.206 and earlier. The dashboards and related components are vulnerable to multiple authenticated SQL Injection flaws that could enable a low-privilege user to escalate privileges. Exploitation status is not detailed in the provided documents. Ro...
PT-2025-27379 · Unknown · Uisp Application
Name of the Vulnerable Software and Affected Versions: UISP Application versions 2.4.206 and earlier Description: Multiple Authenticated SQL Injection vulnerabilities could allow a malicious actor with low privileges to escalate privileges. Recommendations: For UISP Application versions 2.4.206 a...
CVE-2022-44565
An improper access validation vulnerability exists in airMAX AC 8.7.11, airFiber 60/LR 2.6.2, airFiber 60 XG/HD...
CVE-2022-44565
An improper access validation vulnerability exists in airMAX AC 8.7.11, airFiber 60/LR 2.6.2, airFiber 60 XG/HD v1.0.0 and airFiber GBE 1.4.1 that allows a malicious actor to retrieve status and usage data from the UISP device...
CVE-2022-44565
An improper access validation vulnerability exists in airMAX AC 8.7.11, airFiber 60/LR 2.6.2, airFiber 60 XG/HD v1.0.0 and airFiber GBE 1.4.1 that allows a malicious actor to retrieve status and usage data from the UISP device...
Improper access control
An improper access validation vulnerability exists in airMAX AC 8.7.11, airFiber 60/LR 2.6.2, airFiber 60 XG/HD v1.0.0 and airFiber GBE 1.4.1 that allows a malicious actor to retrieve status and usage data from the UISP device...
CVE-2022-44565
The CVE-2022-44565 issue is an improper access validation vulnerability affecting Ubiquiti airMAX AC <8.7.11, airFiber 60/LR <2.6.2, airFiber 60 XG/HD <1.0.0, and airFiber GBE