Linux UniFi Malicious Commands Vulnerability

  1. Current Security Vulnerability Reports
  2. Archive
  3. Linux UniFi Malicious Commands Vulnerability

Linux UniFi Malicious Commands Vulnerability

According to the vulnerability report that has been released on 10th of July; a backup file vulnerability was found in UniFi version applications (Version 7.3.83 and earlier) running on Linux operating systems allows application administrators to execute malicious commands on the host device being restored. (CVE-2023-28365)

Linux UniFi Malicious Commands Vulnerability

Affected Systems

Configuration 1
cpe:2.3:a:ui:unifi:*:*:*:*:*:*:*:* Up to (excluding) 7.4.156
Running on/with
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

IoC’s

-

Recommended Solution(s)

-

Mitigations

-

CVE / CWE

CVE-2023-28365

Related Website(s)

* Vulnerabilities with a CVSS 3.1 score between 7.0 and 8.9 are evaluated to be “high” whereas vulnerabilities with a CVSS 3.1 score between 9.0 and 10.0 are evaluated to be “critical”.

Current Security Vulnerability Reports

Current Security Vulnerability Reports
SolarWinds Serv-U Remote Code Execution Vulnerability

21/07/2021
Current Security Vulnerability Reports
Microsoft Exchange Server Remote Code Execution Vulnerability-34473

21/07/2021
Current Security Vulnerability Reports
Microsoft Exchange Server Remote Code Execution Vulnerability-31206

21/07/2021
Current Security Vulnerability Reports
VMware VCenter Remote Code Execution Vulnerability

26/05/2021
Current Security Vulnerability Reports
Microsoft Exchange Server Remote Code Execution Vulnerabilities

14/04/2021
Current Security Vulnerability Reports
March 2021 Microsoft Exchange 0-Day Reports

03/03/2021
Current Security Vulnerability Reports
Spectre Vulnerability Exploitation

03/03/2021
Current Security Vulnerability Reports
Masslogger Phishing Campaign

19/02/2021
Current Security Vulnerability Reports
SolarWinds: Raindrop Malware

20/01/2021
Current Security Vulnerability Reports
SolarWinds Orion API Authentication Bypass Vulnerability

28/12/2020
Current Security Vulnerability Reports
SolarWinds Sunburst Attack Campaign

22/12/2020
Current Security Vulnerability Reports
StrongPity Watering Hole

07/07/2020
Current Security Vulnerability Reports
Microsoft SMBv3 Compression Vulnerability

11/03/2020
Current Security Vulnerability Reports
Critical Microsoft Vulnerability – March 2020

11/03/2020
Current Security Vulnerability Reports
MS Exchange Validation Key Remote Code Execution Vulnerability

28/02/2020
İSTANBUL

+90 216 504 53 30

+90 216 504 53 32

info@barikat.com.tr

Aydınevler Mahallesi,İsmet İnönü Cadddesi,Küçükyalı Ofis Park A Blok,No:20/1 Maltepe İstanbul

ANKARA

+90 312 235 44 41

+90 312 235 44 51

info@barikat.com.tr

Mustafa Kemal Mahallesi, Dumlupınar Bulvarı No:164, Kentpark Ofis, Kat:4 Daire:06 Çankaya, 06510 Ankara, Turkey

AMSTERDAM

+90 216 504 53 30

+90 216 504 53 32

info@barikatbv.com

Millenium Tower Floor 29, Radarweg 29 1045 XN Amsterdam, Netherlands

VULNERABILITY NEWSLETTER

You can register to our newsletter on the home page to be instantly informed about security vulnerabilities.

Barikat Cyber Security

© 2021 Barikat Cyber Security All rights reserved.