We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-45205



Description

An Improper Certificate Validation on the UniFi iOS App managing a standalone UniFi Access Point (not using UniFi Network Application) could allow a malicious actor with access to an adjacent network to take control of this UniFi Access Point. Affected Products: UniFi iOS App (Version 10.17.7 and earlier) Mitigation: UniFi iOS App (Version 10.18.0 or later).

Reserved 2024-08-23 | Published 2024-12-04 | Updated 2024-12-04 | Assigner hackerone


HIGH: 7.1CVSS:3.0/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Product status

Default status
affected

10.18.0 before 10.18.0
unaffected

References

community.ui.com/...8-0/42f02428-544c-4626-b5b3-5ae40308edc7

cve.org (CVE-2024-45205)

nvd.nist.gov (CVE-2024-45205)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-45205

Support options

Helpdesk Chat, Email, Knowledgebase
Subscribe to our newsletter to learn more about our work.