Lucene search
HackeroneCVELIST:CVE-2024-22054HistoryFeb 20, 2024 - 5:14 p.m.
CVE-2024-22054
2024-02-2017:14:34
hackerone
www.cve.org
cve-2024-22054
malicious actor
device management
network interruption
unifi access points
unifi switches
unifi lte backup
unifi express
update
version 6.6.55
version 6.6.61
version 6.6.57
version 3.2.5.
A malformed discovery packet sent by a malicious actor with preexisting access to the network could interrupt the functionality of device management and discovery.
Affected Products:
UniFi Access Points
UniFi Switches
UniFi LTE Backup
UniFi Express (Only Mesh Mode, Router mode is not affected)
Mitigation:
Update UniFi Access Points to Version 6.6.55 or later.
Update UniFi Switches to Version 6.6.61 or later.
Update UniFi LTE Backup to Version 6.6.57 or later.
Update UniFi Express to Version 3.2.5 or later.
CNA Affected
[
{
"defaultStatus": "unaffected",
"vendor": "Ubiquiti Inc",
"product": "UniFi Access Points",
"versions": [
{
"version": "6.6.55",
"status": "affected",
"lessThan": "6.6.55",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"vendor": "Ubiquiti Inc",
"product": "UniFi Switches",
"versions": [
{
"version": "6.6.61",
"status": "affected",
"lessThan": "6.6.61",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"vendor": "Ubiquiti Inc",
"product": "UniFi LTE Backup",
"versions": [
{
"version": "6.6.57",
"status": "affected",
"lessThan": "6.6.57",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"vendor": "Ubiquiti Inc",
"product": "UniFi Express ",
"versions": [
{
"version": "3.2.5",
"status": "affected",
"lessThan": "3.2.5",
"versionType": "semver"
}
]
}
]Related
nvd
nvd
CVE-2024-22054
2024-02-20 18:15:51
cve
cve
CVE-2024-22054
2024-02-20 18:15:51
prion
prion
Design/Logic Flaw
2024-02-20 18:15:00