Vulnerabilities (CVE)

Filtered by vendor Uni Subscribe
Filtered by product Cloud Key Gen2 Plus
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-28361 1 Uni 9 Cloud Key Gen2, Cloud Key Gen2 Plus, Ubiquiti Networks Unifi Dream Machine and 6 more 2024-11-21 N/A 6.5 MEDIUM
A Cross-site WebSocket Hijacking (CSWSH) vulnerability found in UniFi OS 2.5 and earlier allows a malicious actor to access certain confidential information by persuading a UniFi OS user to visit a malicious webpage.Affected Products:Cloud Key Gen2Cloud Key Gen2 PlusUNVRUNVR ProfessionalUDMUDM ProfessionalUDM SEUDRMitigation:Update affected products to UniFi OS 3.0.13 or later.