CVE-2021-33820

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:ui:camera_g3_flex_firmware:uvc.v4.30.0.67:*:*:*:*:*:*:*
cpe:2.3:h:ui:camera_g3_flex:-:*:*:*:*:*:*:*

History

21 Nov 2024, 06:09

Type Values Removed Values Added
References () https://github.com/Jian-Xian/CVE-POC/blob/master/CVE-2021-33820.md - Exploit, Third Party Advisory () https://github.com/Jian-Xian/CVE-POC/blob/master/CVE-2021-33820.md - Exploit, Third Party Advisory
References () https://linuxhint.com/hping3/ - Third Party Advisory () https://linuxhint.com/hping3/ - Third Party Advisory
References () https://store.ui.com/collections/unifi-protect-cameras/products/unifi-video-g3-flex-camera - Product, Vendor Advisory () https://store.ui.com/collections/unifi-protect-cameras/products/unifi-video-g3-flex-camera - Product, Vendor Advisory

Information

Published : 2021-06-18 19:15

Updated : 2024-11-21 06:09


NVD link : CVE-2021-33820

Mitre link : CVE-2021-33820

CVE.ORG link : CVE-2021-33820


JSON object : View

Products Affected

ui

  • camera_g3_flex
  • camera_g3_flex_firmware