108012
Goto Top

Ubiquiti Networks (UBNT) - Sicherheitsupdates für alle Ihre AirOS Geräte

Hallo,

wer Geräte von UBNT hat, sollte sich gut informieren ob für seine auch ein Firmwareupdate bereitsteht
dass einige Sicherheitslücken stopft. Einfach mal drüber schauen ob da für Euch auch etwas mit dabei
ist und dann einfach updaten! UBNT bietet auch einen kostenlosen Software WLAN Controller mit dem
man dann recht viele Geräte auf einmal erledigen kann.

  • airMax M v6.0.1 or later
  • airMax ac v8.0.1 or later
  • ToughSwitch v1.3.4 or later
  • airGateway v1.1.8 or later
  • airFiber v3.2.2 or later
  • airFiber X v3.2.2 or later
  • airFiber 4x v3.4.1 or later
  • airFiber 11x v3.6.1 or later


ubnt


Original Mitteilung

Addressing Security Concerns

We take network security very seriously and have fixed the authenticated command injection vulnerability for all affected products: airMAX®,
airGateway®, TOUGHSwitch™, and airFiber®; please upgrade the firmware for your devices. UniFi®, EdgeMAX®, and AmpliFi™ products are not affected.

While we acknowledge that all vulnerabilities are serious, we believe this issue rates fairly low in terms of threat severity, because it requires being authenticated
to the management web interface, or tricking an authenticated administrator into opening a targeted, crafted URL in the browser where they are logged in to the
affected device. Ubiquiti strongly backs our security measures:

•Dedicated Security Director focused 100% on Ubiquiti® software vulnerabilities and supported by a strong group of engineers

•Participation in third-party vulnerability assessment programs such as HackerOne, where we have given out substantial rewards

•Significant investment retaining third-party external security audit company to review our software solutions frequently

We’re currently addressing the php2 code concern, which will be eliminated from applicable code bases within the next few weeks.


Gruß
Dobby


Bilder- und Quellenhinweis
Ubiquiti.com (UBNT)



http://us8.campaign-archive2.com/?u=bc856e62a9254399365d0277b&i ...

Content-Key: 332715

Url: https://administrator.de/contentid/332715

Ausgedruckt am: 29.03.2024 um 05:03 Uhr