Ubiquiti Уязвимости

Временная шкала

Тип

Продукт

Ubiquiti EdgeRouter X10
Ubiquiti EdgeOS5
Ubiquiti Networks EdgeSwitch4
Ubiquiti UniFi Access Point3
Ubiquiti UniFi Switch3

Устранение последствий

Official Fix23
Temporary Fix0
Workaround1
Unavailable5
Not Defined32

Эксплуатационная пригодность

High0
Functional0
Proof-of-Concept16
Unproven0
Not Defined45

Вектор доступа

Not Defined0
Physical0
Local3
Adjacent15
Network43

Аутентификация

Not Defined0
High9
Low31
None21

Взаимодействие с пользователем

Not Defined0
Required7
None54

C3BM Index

CVSSv3 Base

≤10
≤20
≤31
≤44
≤59
≤67
≤712
≤815
≤913
≤100

CVSSv3 Temp

≤10
≤20
≤31
≤44
≤511
≤67
≤717
≤812
≤99
≤100

VulDB

≤10
≤20
≤32
≤47
≤511
≤69
≤711
≤813
≤98
≤100

NVD

≤10
≤20
≤30
≤40
≤53
≤66
≤71
≤811
≤915
≤108

CNA

≤10
≤20
≤32
≤40
≤50
≤62
≤76
≤86
≤92
≤100

Поставщик

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤81
≤90
≤100

Эксплойт 0-дня

<1k12
<2k34
<5k15
<10k0
<25k0
<50k0
<100k0
≥100k0

Эксплойт сегодня

<1k61
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Объем рынка эксплойтов

🔴 CTI Деятельность

Affected Products (82): AG-HP-2G16 (1), AG-HP-2G20 (1), AG-HP-5G23 (1), AG-HP-5G27 (1), AR (1), AR-HP (1), AirCube (1), AirGrid M (1), AirGrid M2 (1), AirGrid M5 (1), BM2-Ti (1), BM2HP (1), BM5-Ti (1), BM5HP (1), EdgeMAX (1), EdgeMAX EdgeRouter (1), EdgeOS (5), EdgePower 24V-54V (1), EdgeRouter (1), EdgeRouter X (10), EdgeRouters (2), EdgeSwitch XP (1), LiteStation M5 (1), M2 (1), M3 (1), M5 (1), M365 (1), NSM5 (1), Networks EdgeSwitch (4), Networks EdgeSwitch X (1), PICOM2HP (1), PicoStation2 (2), PicoStation2HP (2), TS-5-POE (2), TS-8-PRO (3), TS-16-CARRIER (2), UCRM (2), UI Desktop (3), UniFi (2), UniFi 52 (1), UniFi AP AC Lite (1), UniFi Access G2 Reader Pro (1), UniFi Access Intercom (1), UniFi Access Intercom Viewer (1), UniFi Access Point (3), UniFi Access Reader Pro (1), UniFi App (1), UniFi Connect Application (1), UniFi Connect Display (2), UniFi Connect Display Cast (2), UniFi Connect EV Station (2), UniFi Connect EV Station Pro (2), UniFi Controller (1), UniFi Door Access Reader Lite (1), UniFi Dream Machine Pro (1), UniFi Express (1), UniFi LTE Backup (1), UniFi Meshing Access Point UAP-AC-M (1), UniFi Network (2), UniFi Network Application (1), UniFi OS (2), UniFi Protect G3 FLEX (2), UniFi Security Gateway (1), UniFi Switch (3), UniFi U6+ Access Point (1), UniFi Video (1), Update UniFi Connect Display (1), Update UniFi Connect Display Cast (1), Update UniFi Connect EV Station (1), Update UniFi Connect EV Station Pro (1), airCam (1), airFiber (1), airFiber 60 XG-LR (1), airFiber 60-LR (1), airFiber AF2X (1), airFiber GBE (1), airGateway (1), airMAX (1), airMAX AC (1), locoM2 (1), locoM5 (1), locoM9 (1)

ОпубликованоBaseTempУязвимостиProdЭ�RemEPSSCTICVE
22.07.20244.24.1Ubiquiti UniFi U6+ Access Point VLAN Traffic эскалация привилегийНеизвестноNot DefinedOfficial Fix0.000430.39CVE-2024-37380
09.07.20244.64.4Ubiquiti UniFi App Access Point отказ в обслуживанииiOS App SoftwareNot DefinedOfficial Fix0.000430.00CVE-2024-34786
07.05.20242.22.1Ubiquiti Update UniFi Connect EV Station эскалация привилегийНеизвестноNot DefinedOfficial Fix0.000650.04CVE-2024-29208
07.05.20246.56.4Ubiquiti UniFi Connect Application слабая аутентификацияНеизвестноNot DefinedOfficial Fix0.000650.03CVE-2024-29207
07.05.20243.23.1Ubiquiti UniFi Connect EV Station API эскалация привилегийНеизвестноNot DefinedOfficial Fix0.000650.05CVE-2024-29206
05.04.20247.26.9Ubiquiti UniFi Network Application эскалация привилегийНеизвестноNot DefinedOfficial Fix0.000430.04CVE-2024-27981
20.02.20247.57.3Ubiquiti UniFi Access Point Discovery Packet отказ в обслуживанииBackup SoftwareNot DefinedOfficial Fix0.000430.03CVE-2024-22054
11.08.20239.08.8Ubiquiti UniFi Access Point/UniFi Switch SNMP Monitoring повреждение памятиНеизвестноNot DefinedOfficial Fix0.002750.05CVE-2023-35085
11.08.20238.58.4Ubiquiti UniFi Access Point/UniFi Switch DHCP Client эскалация привилегийНеизвестноNot DefinedOfficial Fix0.003190.04CVE-2023-38034
18.07.20237.06.9Ubiquiti EdgeRouters/AirCube UPnP Service повреждение памятиRouter Operating SystemNot DefinedOfficial Fix0.000470.00CVE-2023-31998

51 больше записей не показано

Do you need the next level of professionalism?

Upgrade your account now!