EUVD-2025-27734

Malicious code in bioql PyPI...

EUVD-2025-25443

Malicious code in bioql PyPI...

CVE-2025-27215

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect Display Cast devices to make unsupported changes to the system. Affected Products: UniFi Connect Display Cast Version 1.10.3 and earlier UniFi Connect Display Cast Pro Version 1.0.89 and...

CVE-2025-27215

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect Display Cast devices to make unsupported changes to the system. Affected Products: UniFi Connect Display Cast Version 1.10.3 and earlier UniFi Connect Display Cast Pro Version 1.0.89 and...

CVE-2025-27213

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect devices to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Pro Version 1.5.18 and earlier UniFi Connect Display Versio...

CVE-2025-27215

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect Display Cast devices to make unsupported changes to the system. Affected Products: UniFi Connect Display Cast Version 1.10.3 and earlier UniFi Connect Display Cast Pro Version 1.0.89 and...

CVE-2025-27213

The CVE-2025-27213 entry concerns several UniFi Connect devices with an improper access control in the API that could allow a malicious actor already authenticated to enable Android Debug Bridge (ADB) and perform unsupported system changes. Affected products and versions are: UniFi Connect EV Sta...

CVE-2025-27215

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect Display Cast devices to make unsupported changes to the system. Affected Products: UniFi Connect Display Cast Version 1.10.3 and earlier UniFi Connect Display Cast Pro Version 1.0.89 and...

CVE-2025-27215

CVE-2025-27215 describes an improper access control in the API of UniFi Connect Display Cast devices that, when authenticated, allows a malicious actor to make unsupported changes to the system. Affected products and versions are: UniFi Connect Display Cast 1.10.3 and earlier; Cast Pro 1.0.89 and...

CVE-2025-27213

An Improper Access Control could allow a malicious actor authenticated in the API of certain UniFi Connect devices to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Pro Version 1.5.18 and earlier UniFi Connect Display Versio...

Ubiquiti多款产品 安全漏洞

Ubiquiti UniFi Connect EV Station and others are products of Ubiquiti, Inc.Ubiquiti UniFi Connect EV Station is an electric vehicle station.Ubiquiti UniFi Connect Display is an access control system monitor device. Ubiquiti UniFi Connect Display Cast is a player. A security vulnerability exists i...

Ubiquiti多款产品 安全漏洞

Ubiquiti UniFi Connect Display Cast and others are a player from Ubiquiti USA. A security vulnerability exists in various Ubiquiti products that stems from improper access control and could lead to system modifications. The following products and versions are affected: UniFi Connect Display Cast...

PT-2025-34172 · Ubiquiti · Unifi Connect Display +2

Name of the Vulnerable Software and Affected Versions: UniFi Connect EV Station Pro versions 1.5.18 and earlier UniFi Connect Display versions 1.9.324 and earlier UniFi Connect Display Cast versions 1.9.301 and earlier UniFi Connect Display Cast Pro versions 1.0.78 and earlier UniFi Connect Displ...

PT-2025-34174 · Ubiquiti · Unifi Connect Display Cast

Name of the Vulnerable Software and Affected Versions: UniFi Connect Display Cast versions prior to 1.10.7 UniFi Connect Display Cast Pro versions prior to 1.0.94 UniFi Connect Display Cast Lite versions prior to 1.1.8 Description: An improper access control issue could allow a malicious actor...

CVE-2024-29206

An Improper Access Control could allow a malicious actor authenticated in the API to enable Android Debug Bridge ADB and make unsupported changes to the system. Affected Products: UniFi Connect EV Station Version 1.1.18 and earlier UniFi Connect EV Station Pro Version 1.1.18 and earlier UniFi...

CVE-2024-29206

CVE-2024-29206 concerns multiple Ubiquiti UniFi devices. The issue is described as an improper access control that, if an attacker is authenticated in the API, can enable Android Debug Bridge (ADB) and make unsupported changes to the system. Affected products and versions include: UniFi Connect E...

PT-2024-22808 · Ubiquiti · Unifi Connect Ev Station Pro +3

Name of the Vulnerable Software and Affected Versions: UniFi Connect Application versions 3.7.9 and earlier UniFi Connect EV Station versions 1.1.18 and earlier UniFi Connect EV Station Pro versions 1.1.18 and earlier UniFi Connect Display versions 1.9.324 and earlier UniFi Connect Display Cast...

Ubiquiti UniFi Connect EV Station 安全漏洞

The Ubiquiti UniFi Connect EV Station is an electric vehicle station from Ubiquiti USA. A security vulnerability exists in multiple UniFi products that stems from incorrect certificate validation. The following products and versions are affected: UniFi Connect Application version 3.7.9 and earlie...

Ubiquiti UniFi Connect EV Station 安全漏洞

The Ubiquiti UniFi Connect EV Station is an electric vehicle station from Ubiquiti USA. A security vulnerability exists in several UniFi products. An attacker exploited the vulnerability to change the system password without knowing the previous password. The following products and versions are...

PT-2024-22809 · Ubiquiti · Unifi Connect Ev Station Pro +3

Name of the Vulnerable Software and Affected Versions: UniFi Connect EV Station versions 1.1.18 and earlier UniFi Connect EV Station Pro versions 1.1.18 and earlier UniFi Connect Display versions 1.9.324 and earlier UniFi Connect Display Cast versions 1.6.225 and earlier Description: An Unverifie...