Vulnerabilities (CVE)

Filtered by vendor Ui Subscribe

Filtered by product Unifi

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2013-3572	1 Ui	1 Unifi	2024-02-14	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in the administer interface in the UniFi Controller in Ubiquiti Networks UniFi 2.3.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted client hostname.
CVE-2023-28365	2 Linux, Ui	2 Linux Kernel, Unifi	2023-12-10	N/A	9.1 CRITICAL
A backup file vulnerability found in UniFi applications (Version 7.3.83 and earlier) running on Linux operating systems allows application administrators to execute malicious commands on the host device being restored.