Critical Vulnerabilities Addressed
Ubiquiti has released security updates to address three maximum severity vulnerabilities in its UniFi OS, the operating system that powers UniFi Consoles and manages networking, security, and other IT services. These flaws, reported through the company’s HackerOne bug bounty program, could be exploited by remote attackers without any privileges, posing a significant risk to managed infrastructure.
One of the vulnerabilities allows unauthorized changes to systems due to an Improper Access Control weakness. Another flaw enables attackers to access files on the underlying system through a Path Traversal vulnerability. A third issue permits command injection attacks after gaining network access, exploiting an Improper Input Validation weakness.
Impact and Exposure
Beyond the three maximum severity issues, Ubiquiti also patched a second critical command injection flaw and a high severity information disclosure vulnerability. The company has not confirmed any active exploitation, but the low complexity of these attacks raises concern. Threat intelligence firm Censys reports nearly 100,000 internet exposed UniFi OS endpoints, with almost half located in the United States. These exposures make systems attractive targets for both state backed hacking groups and cybercriminals, who have previously targeted Ubiquiti products to build botnets and proxy malicious traffic in espionage campaigns. Administrators are urged to apply the latest updates immediately to mitigate these risks.
Source: BleepingComputer
