CVE-2024-29208

🗓️ 07 May 2024 16:40:02Reported by hackeroneType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 99 Views

Unverified Password Change vulnerability. Update affected UniFi Connect products to specified versions

Reporter	Title	Published	Views	Family All 8
CNNVD	Ubiquiti UniFi Connect EV Station 安全漏洞	7 May 202400:00	–	cnnvd
Cvelist	CVE-2024-29208	7 May 202416:40	–	cvelist
EUVD	EUVD-2024-26225	3 Oct 202520:07	–	euvd
NVD	CVE-2024-29208	7 May 202417:15	–	nvd
Positive Technologies	PT-2024-22809 · Ubiquiti · Unifi Connect Ev Station Pro +3	7 May 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-29208	23 May 202508:56	–	redhatcve
Vulnrichment	CVE-2024-29208	7 May 202416:40	–	vulnrichment
Zero Day Initiative	(Pwn2Own) Ubiquiti Networks EV Station changeUserPassword Missing Authentication Remote Code Execution Vulnerability	21 Jun 202400:00	–	zdi

Vulners

Vulnrichment

Node

ubiquiti_inc update_unifi_connect_ev_stationRange≤1.2.15

ubiquiti_inc update_unifi_connect_ev_station_proRange≤1.2.15

ubiquiti_inc update_unifi_connect_displayRange≤1.11.348

ubiquiti_inc update_unifi_connect_display_castRange≤1.8.255

[
  {
    "defaultStatus": "unaffected",
    "vendor": "Ubiquiti Inc",
    "product": "Update UniFi Connect EV Station",
    "versions": [
      {
        "version": "1.2.15",
        "status": "affected",
        "lessThan": "1.2.15",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "vendor": "Ubiquiti Inc",
    "product": "Update UniFi Connect EV Station Pro",
    "versions": [
      {
        "version": "1.2.15",
        "status": "affected",
        "lessThan": "1.2.15",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "vendor": "Ubiquiti Inc",
    "product": "Update UniFi Connect Display",
    "versions": [
      {
        "version": "1.11.348",
        "status": "affected",
        "lessThan": "1.11.348",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "vendor": "Ubiquiti Inc",
    "product": "Update UniFi Connect Display Cast ",
    "versions": [
      {
        "version": "1.8.255",
        "status": "affected",
        "lessThan": "1.8.255",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
community	www.community.ui.com/releases/Security-Advisory-bulletin-039-039/44e24007-2c2c-4ac0-bebf-3f19b9b24f09

15 Apr 2026 00:35Current

6.9Medium risk

Vulners AI Score6.9

CVSS 32.2

EPSS0.00341

SSVC

CWE-521