UniFi Cloud Key firmware <= v1.1.10 for Cloud Key gen2 and Cloud Key gen2 Plus contains a vulnerability that allows unrestricted root access through the serial interface (UART).
2020-05-02T16:15:11.620
2024-11-21T05:38:24.233
Modified
CVSSv3.1: 6.8 (MEDIUM)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Operating System | ui | unifi_cloud_key_gen2_firmware | ≤ 1.1.10 | Yes |
Hardware | ui | unifi_cloud_key_gen2 | - | No |
Operating System | ui | unifi_cloud_key_gen2_plus_firmware | ≤ 1.1.10 | Yes |
Hardware | ui | unifi_cloud_key_gen2_plus | - | No |