Ui

Unifi Dream Machine Special Edition Firmware

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
  • EPSS 0.2%
  • Veröffentlicht 02.07.2026 14:50:48
  • Zuletzt bearbeitet 10.07.2026 02:46:09

A malicious actor with access to the network and low privileges and under certain conditions could exploit an Improper Access Control vulnerability found in UniFi OS with UniFi Protect Application to escalate privileges on the host device.

  • EPSS 0.22%
  • Veröffentlicht 02.07.2026 14:49:17
  • Zuletzt bearbeitet 10.07.2026 02:50:13

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (SSRF) to escalate privileges within such UniFi OS devices or instances.

Medienbericht
  • EPSS 0.87%
  • Veröffentlicht 02.07.2026 14:49:17
  • Zuletzt bearbeitet 10.07.2026 02:49:32

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UniFi OS to execute a Command Injection on the host device.

  • EPSS 0.46%
  • Veröffentlicht 02.07.2026 14:49:16
  • Zuletzt bearbeitet 10.07.2026 02:46:57

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in certain devices running UniFi OS to bypass authentication of such UniFi OS devices or instances.

  • EPSS 0.25%
  • Veröffentlicht 02.07.2026 14:49:16
  • Zuletzt bearbeitet 10.07.2026 02:48:50

A malicious actor with access to the network and low privileges could exploit a series of authenticated SQL Injection vulnerabilities found in UniFi OS to escalate privileges within such UniFi OS devices or instances.

  • EPSS 0.14%
  • Veröffentlicht 02.07.2026 14:49:16
  • Zuletzt bearbeitet 09.07.2026 18:33:16

A malicious actor who lures an authenticated user to a malicious page could exploit a Cross-Origin Resource Sharing (CORS) misconfiguration found in UniFi OS to trigger actions in UniFi OS using that user's session.

Warnung Medienbericht Exploit
  • EPSS 2.45%
  • Veröffentlicht 22.05.2026 00:43:49
  • Zuletzt bearbeitet 24.06.2026 14:50:41

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS devices to make unauthorized changes to the system.

Warnung Medienbericht Exploit
  • EPSS 2.27%
  • Veröffentlicht 22.05.2026 00:43:49
  • Zuletzt bearbeitet 24.06.2026 14:49:53

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to access an underlying account.

Warnung Medienbericht Exploit
  • EPSS 78.56%
  • Veröffentlicht 22.05.2026 00:43:49
  • Zuletzt bearbeitet 24.06.2026 14:49:47

A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection.

Medienbericht
  • EPSS 0.68%
  • Veröffentlicht 22.05.2026 00:43:49
  • Zuletzt bearbeitet 24.06.2026 15:15:58

A malicious actor with access to the network and low privileges could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to obtain sensitive information.