CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Ui: >> Unifi Network Application >> 7.5.187 Security Vulnerabilities

CVE-2024-42025

A Command Injection vulnerability found in a Self-Hosted UniFi Network Servers (Linux) with UniFi Network Application (Version 8.3.32 and earlier) allows a malicious actor with unifi user shell access to escalate privileges to root on the host device.

CVSS Score

7.8

EPSS Score

0.002

Published

2024-09-13

Page 1

Vulnerabilities

Vulnerable Software

Ui: >> Unifi Network Application >> 7.5.187 Security Vulnerabilities

Products

Pricing

Contact Us