CVE-2024-45205

CVSS 3.0 Score 7.1 of 10 (high)

Details

Published Dec 4, 2024
CWE ID 295

Summary

CVE-2024-45205: A vulnerability exists in the UniFi iOS App that manages standalone UniFi Access Points. This issue involves improper certificate validation, allowing a nearby malicious actor to seize control of the access point. Affected versions of the UniFi iOS App are 10.17.7 and earlier. To mitigate this risk, users are advised to upgrade to version 10.18.0 or later.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share