Full Disclosure

KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution

June 28, 2016 007admin Leave a comment

Posted by KoreLogic Disclosures on Jun 28

KL-001-2016-002 : Ubiquiti Administration Portal CSRF to Remote Command Execution

Title: Ubiquiti Administration Portal CSRF to Remote Command Execution
Advisory ID: KL-001-2016-002
Publication Date: 2016.06.28
Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2016-002.txt

1. Vulnerability Details

Affected Vendor: Ubiquiti
Affected Product: AirGateway, AirFiber, mFi
Affected Version: 1.1.6, 3.2, 2.1.11…

Leave a Reply Cancel reply

You must be logged in to post a comment.

Software and Security Information