An injection vulnerability exists in a third-party library used in UniFi Network Version 6.5.53 and earlier (Log4J CVE-2021-44228) allows a malicious actor to control the application.
References
Link | Resource |
---|---|
https://community.ui.com/releases/Security-Advisory-Bulletin-023-023/808a1db0-5f8e-4b91-9097-9822f3f90207 | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hackerone
Published: 2022-01-14T19:15:37
Updated: 2022-01-14T19:15:37
Reserved: 2021-12-02T00:00:00
Link: CVE-2021-44530
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-01-14T20:15:12.200
Modified: 2022-08-09T00:51:27.147
Link: CVE-2021-44530
JSON object: View
Redhat Information
No data.