CVE-2020-27888

Published: Oct 27, 2020Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Cached credentials are not erased from an access point returning wirelessly from a disconnected state. This may provide unintended network access.

Affected (2)

Products: Ui: Unifi Meshing Access Point Firmware, Unifi Controller Firmware

2 products

Unifi Meshing Access Point Firmware

Unifi Controller Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Unifi Meshing Access Point Firmware	Version 4.3.21.11325

Running on/with	Platform Versions
Ui Unifi Meshing Access Point	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Ui Unifi Controller Firmware	Version 6.0.28

Running on/with	Platform Versions
Ui Unifi Controller	All versions

Related CWEs

Incomplete Cleanup

The product does not properly "clean up" and remove temporary or supporting resources after they have been used.

Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

References (2)

https://community.ui.com/questions/Possible-authentication-bypass-for-access-into-LAN/7965adb2-5d70-4410-8467-4c7bec76bc00

Source: cve@mitre.org

Vendor Advisory

https://community.ui.com/questions/Possible-authentication-bypass-for-access-into-LAN/7965adb2-5d70-4410-8467-4c7bec76bc00

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.