Ubiquiti Addresses Five Critical Vulnerabilities in UniFi OS
Ubiquiti's UniFi OS and UID Enterprise Agent contain five security vulnerabilities, three of which are critical. These flaws allow for code injection and unauthorized access.
Network equipment manufacturer Ubiquiti has released updates to address five significant security vulnerabilities found in its UniFi OS and UID Enterprise Agent software. The flaws could have allowed attackers to execute remote code, bypass security measures, or gain unauthorized access to sensitive information.
Three of the vulnerabilities are classified as critical, each with a CVSS score of 9.9. These issues stem from insufficient input validation in the UID Enterprise Agent and UniFi OS, enabling attackers with network access to execute commands on vulnerable systems. A similar vulnerability type also allows for privilege escalation.
Two additional high-risk vulnerabilities were identified. A path traversal flaw (CVSS 8.6) allows unauthorized access to data on UniFi OS devices, and insufficient authorization checks (CVSS 8.1) could enable attackers to make unauthorized changes to vulnerable systems.
Ubiquiti has provided patches for these issues. The updated versions include UID Enterprise Agent 1.61.4. Several UniFi OS devices, such as the UDM, UCK, and UNVR series, are now running versions 5.1.15 or 5.1.16, and the Express devices have been updated to version 4.0.15.
This patch release comes shortly after Ubiquiti addressed other critical vulnerabilities in UniFi OS, some of which had previously received the highest possible CVSS risk rating of 10.0.