SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= 5.10.21 and their actual SMTP server to record their SMTP credentials for malicious use later.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HUi Unifi Controller
APPUiβ€ 5.10.21
Related vulnerabilities
An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0....
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subs...
Multiple cross-site request forgery (CSRF) vulnerabilities in Ubiquiti Networks UniFi Controller before 3.2.1 ...
Cross-site scripting (XSS) vulnerability in the administer interface in the UniFi Controller in Ubiquiti Netwo...
Ubiquiti UniFi Controller before 3.2.1 logs the administrative password hash in syslog messages, which allows ...