CVE-2019-15595
CVE-2019-15595
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 1.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
25 Nov 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A privilege escalation exists in UniFi Video Controller =<3.10.6 that would allow an attacker on the local machine to run arbitrary commands.
Affected products
n/a · UniFi Video ServerReferences
https://hackerone.com/reports/544928