CVE-2024-22054 Information

Feb 21, 2024 cve

Description

A malformed discovery packet sent by a malicious actor with preexisting access to the network could interrupt the functionality of device management and discovery.

Affected Products:

UniFi Access Points

UniFi Switches

UniFi LTE Backup

UniFi Express (Only Mesh Mode Router mode is not affected)

Mitigation:

Update UniFi Access Points to Version 6.6.65 or later.

Update UniFi Switches to Version 6.6.61 or later.

Update UniFi LTE Backup to Version 6.6.57 or later.

Update UniFi Express to Version 3.2.5 or later.

Reference

https://community.ui.com/releases/Security-Advisory-Bulletin-037-037/9aeeccef-ca4a-4f10-9f66-1eb400b3d027

Share on: