Airos Security Vulnerabilities and Issues — Airos CVE List

Lucene search

UiAiros

5 matches found

CVE•added 2019/06/11 9:29 p.m.•1009 views

CVE-2010-5330

On certain Ubiquiti devices, Command Injection exists via a GET request to stainfo.cgi (aka Show AP info) because the ifname variable is not sanitized, as demonstrated by shell metacharacters. The fixed version is v4.0.1 for 802.11 ISP products, v5.3.5 for AirMax ISP products, and v5.4.5 for AirSyn...

9.8CVSS9.3AI score0.61526EPSS

CVE•added 2020/05/26 4:15 p.m.•87 views

CVE-2020-8168

We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the description below:Attackers can abuse multiple end-points not protected against cross-site request ...

8.8CVSS8.8AI score0.00315EPSS

CVE•added 2020/05/26 4:15 p.m.•80 views

CVE-2020-8170

We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the description below:Multiple end-points with parameters vulnerable to reflected cross site scripting ...

6.1CVSS6.5AI score0.0037EPSS

CVE•added 2020/05/26 4:15 p.m.•76 views

CVE-2020-8171

We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the description below:There are certain end-points containing functionalities that are vulnerable to co...

9.8CVSS10AI score0.06929EPSS

CVE•added 2019/02/12 10:29 p.m.•50 views

CVE-2017-0938

Denial of Service attack in airMAX < 8.3.2 , airMAX < 6.0.7 and EdgeMAX

7.5CVSS7.4AI score0.00442EPSS