VYPR

Unifi Protect Camera

by Ubiquiti Inc

CVEs (14)

  • CVE-2025-23123CriMay 19, 2025
    risk 0.65cvss 10.0epss 0.01

    A malicious actor with access to the management network could execute a remote code execution (RCE) by exploiting a heap buffer overflow vulnerability in the UniFi Protect Cameras (Version 4.75.43 and earlier) firmware.

  • CVE-2025-23116CriMar 1, 2025
    risk 0.62cvss 9.6epss 0.01

    An Authentication Bypass vulnerability on UniFi Protect Application with Auto-Adopt Bridge Devices enabled could allow a malicious actor with access to UniFi Protect Cameras adjacent network to take control of UniFi Protect Cameras.

  • CVE-2021-22943CriAug 31, 2021
    risk 0.62cvss 9.6epss 0.00

    A vulnerability found in UniFi Protect application V1.18.1 and earlier permits a malicious actor who has already gained access to a network to subsequently control the Protect camera(s) assigned to said network. This vulnerability is fixed in UniFi Protect application V1.19.0…

  • CVE-2025-23115CriMar 1, 2025
    risk 0.59cvss 9.0epss 0.01

    A Use After Free vulnerability on UniFi Protect Cameras could allow a Remote Code Execution (RCE) by a malicious actor with access to UniFi Protect Cameras management network.

  • CVE-2021-22957HigNov 24, 2021
    risk 0.57cvss 8.8epss 0.01

    A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and earlier allows a malicious actor who has convinced a privileged user to access a URL with malicious code to take over said user’s account.This vulnerability is fixed in…

  • CVE-2020-8188HigJul 2, 2020
    risk 0.57cvss 8.8epss 0.01

    We have recently released new version of UniFi Protect firmware v1.13.3 and v1.14.10 for Unifi Cloud Key Gen2 Plus and UniFi Dream Machine Pro/UNVR respectively that fixes vulnerabilities found on Protect firmware v1.13.2, v1.14.9 and prior according to the description…

  • CVE-2025-23119HigMar 1, 2025
    risk 0.49cvss 7.5epss 0.01

    An Improper Neutralization of Escape Sequences vulnerability could allow an Authentication Bypass with a Remote Code Execution (RCE) by a malicious actor with access to UniFi Protect Cameras adjacent network.

  • CVE-2021-33820HigJun 18, 2021
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.

  • CVE-2021-33818HigJun 18, 2021
    risk 0.49cvss 7.5epss 0.02

    An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is…

  • CVE-2021-22882HigFeb 23, 2021
    risk 0.49cvss 7.5epss 0.01

    UniFi Protect before v1.17.1 allows an attacker to use spoofed cameras to perform a denial-of-service attack that may cause the UniFi Protect controller to crash.

  • CVE-2025-23117MedMar 1, 2025
    risk 0.44cvss 6.8epss 0.00

    An Insufficient Firmware Update Validation vulnerability could allow an authenticated malicious actor with access to UniFi Protect Cameras adjacent network to make unsupported changes to the camera system.

  • CVE-2025-23118MedMar 1, 2025
    risk 0.42cvss 6.4epss 0.00

    An Improper Certificate Validation vulnerability could allow an authenticated malicious actor with access to UniFi Protect Cameras adjacent network to make unsupported changes to the camera system.

  • CVE-2020-8267MedNov 5, 2020
    risk 0.35cvss 5.3epss 0.01

    A security issue was found in UniFi Protect controller v1.14.10 and earlier.The authentication in the UniFi Protect controller API was using “x-token” improperly, allowing attackers to use the API to send authenticated messages without a valid token.This vulnerability was…

  • CVE-2020-8213MedJul 30, 2020
    risk 0.35cvss 5.3epss 0.01

    An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP response code and response timing.