CNNVD-202508-271 Information
CNNVD ID
CNNVD-202508-271
Related CVE
- CNNVD Published: 2025-08-04
Description (Chinese)
Ubiquiti UniFi Access Reader等都是美国优比快(Ubiquiti)公司的产品。Ubiquiti UniFi Access Reader是一个门禁系统查看器设备。Ubiquiti UniFi Access Intercom是一款对讲机系统设备。Ubiquiti UniFi Access Reader Pro是一款读卡器和门禁通话设备。 Ubiquiti多款产品存在安全漏洞,该漏洞源于输入验证不当,可能导致命令注入。以下产品及版本受到影响:UniFi Access Reader Pro 2.14.21及之前版本、UniFi Access G2 Reader Pro 1.10.32及之前版本、UniFi Access G3 Reader Pro 1.10.30及之前版本、UniFi Access Intercom 1.7.28及之前版本、UniFi Access G3 Intercom 1.7.29及之前版本和UniFi Access Intercom Viewer 1.3.20及之前版本。
Description (English)
Ubiquiti UniFi Access Reader and others are products of Ubiquiti. Ubiquiti UniFi Access Reader is a door-ban system viewer device. Ubiquiti UniFi Access Intercom is a walkie-talkie system device. Ubiquiti UniFi Access Reader Pro is a card reader and closed-door device. There is a safety loophole in a number of Ubiquiti products, which arises from inappropriate input certification, which may lead to command injections. The following products and versions were affected: UniFi Access Reader Pro 2.14.21 and earlier, UniFi Access G2 Reader Pro 1.10.32 and earlier, UniFi Access G3 Reader Pro 1.10.30 and earlier, UniFi Access Intercom 1.7.28 and earlier, UniFi Access G3 Intercom 1.7.29 and earlier, and UniFi Access Intercom Viewer 1.3.20 and earlier.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
优比快
Published
2025-08-04
Last Modified
2026-02-24
References
https://community.ui.com/releases/Security-Advisory-Bulletin-051-051/583fa6e1-3d85-42ec-a453-651d1653c9b3 https://access.redhat.com/security/cve/cve-2025-27212