Vulnerability Details CVE-2022-22570
A buffer overflow vulnerability found in the UniFi Door Access Reader Lite’s (UA Lite) firmware (Version 3.8.28.24 and earlier) allows a malicious actor who has gained access to a network to control all connected UA devices. This vulnerability is fixed in Version 3.8.31.13 and later.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.7%
CVSS Severity
CVSS v3 Score 10.0
CVSS v2 Score 7.5
References
Products affected by CVE-2022-22570
-
cpe:2.3:h:ui:ua_lite:-
-
cpe:2.3:o:ui:ua_lite_firmware:-
-
cpe:2.3:o:ui:ua_lite_firmware:3.8.28.20
-
cpe:2.3:o:ui:ua_lite_firmware:3.8.28.24