An Improper Input Validation vulnerability in UniFi Network Server may allow unauthorized access to an account if the account owner is socially engineered into clicking a malicious link. Affected Products: UniFi Network Server (Version 10.1.85 and earlier) Mitigation: Update UniFi Network Server to Version 10.1.89 or later.
| Vendor | Product | Versions |
|---|---|---|
| Ubiquiti | UniFi Network Server | 10.1.88, 10.2.93, 9.0.114 |
Updated severity to CRITICAL, added new affected versions 10.2.93 and 9.0.114, and marked the vulnerability as actively exploited with an exploit available.
Updated vendor to Ubiquiti, product to UniFi Network Server, affected versions to include 10.1.88, changed severity to CRITICAL, and noted that the vulnerability is actively exploited.
Initial creation
