UniFi Application Backup File Vulnerability: Remote Command Execution on Linux Systems

UniFi Application Backup File Vulnerability: Remote Command Execution on Linux Systems

CVE-2023-28365 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

A backup file vulnerability found in UniFi applications (Version 7.3.83 and earlier) running on Linux operating systems allows application administrators to execute malicious commands on the host device being restored.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.