Ubiquiti Unifi Network Application vulnerabilities
2 known vulnerabilities affecting ubiquiti/unifi_network_application.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2023-41721P4MEDIUMCVSS 5.3≥ 7.5.176, ≤ 7.5.1762023-10-25
CVE-2023-41721 [MEDIUM] CWE-284 CVE-2023-41721: Instances of UniFi Network Application that (i) are run on a UniFi Gateway Console, and (ii) are ver
Instances of UniFi Network Application that (i) are run on a UniFi Gateway Console, and (ii) are versions 7.5.176. and earlier, implement device adoption with improper access control logic, creating a risk of access to device configuration information by a malicious actor with preexisting access to the network.
Affected Products:
UDM
UDM-PRO
UDM-SE
nvd
CVE-2023-32000P4MEDIUMCVSS 4.8≥ 7.3.83, ≤ 7.3.832023-07-08
CVE-2023-32000 [MEDIUM] CWE-79 CVE-2023-32000: A Cross-Site Scripting (XSS) vulnerability found in UniFi Network (Version 7.3.83 and earlier) allow
A Cross-Site Scripting (XSS) vulnerability found in UniFi Network (Version 7.3.83 and earlier) allows a malicious actor with Site Administrator credentials to escalate privileges by persuading an Administrator to visit a malicious web page.
nvd