CVE-2020-8213
N/A
N/A
Summary
An information exposure vulnerability exists in UniFi Protect before v1.13.4-beta.5 that allowed unauthenticated attackers access to valid usernames for the UniFi Protect web application via HTTP response code and response timing.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| UniFi | Protect for UniFi Cloud Key Gen2 Plus | Fixed in v1.13.4-beta.5 | affected |
Weaknesses
- CWE-209: Information Exposure Through an Error Message (CWE-209)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.