CVE-2020-8157

Published: May 2, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

UniFi Cloud Key firmware <= v1.1.10 for Cloud Key gen2 and Cloud Key gen2 Plus contains a vulnerability that allows unrestricted root access through the serial interface (UART).

Vendor	Product	Versions
n/a	UniFi Cloud Key Gen2, Cloud Key Gen2 plus	affected `Fixed in v1.1.11`

Weaknesses (CWE)

CWE-284

References

https://community.ui.com/releases/Security-advisory-bulletin-008-008/5f66ca4c-10d6-4ca5-9620-37d5a4f22413

x_refsource_CONFIRM

https://community.ui.com/releases/UniFi-Cloud-Key-Firmware-1-1-11/a24e55e1-6d90-46d7-92e2-01539ec8c79d

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-8157

Description

Affected Products

Weaknesses (CWE)

References