Home
CRITICAL: 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HDefault status
unaffected
Any version before 5.0.8
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.11
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.10
affected
Default status
unaffected
Any version before 5.1.10
affected
Default status
unaffected
Any version before 5.1.10
affected
Default status
unaffected
Any version before 5.1.10
affected
Default status
unaffected
Any version before 5.1.10
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Default status
unaffected
Any version before 5.1.12
affected
Description
A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection.
Problem types
CWE-20 Improper Input Validation
Product status
Any version before 5.0.8
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.11
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.10
Any version before 5.1.10
Any version before 5.1.10
Any version before 5.1.10
Any version before 5.1.10
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
Any version before 5.1.12
References
community.ui.com/...064/84811c09-4cf4-42ab-bd61-cc994445963b