Ubiquiti reports critical security vulnerability in the UniFi Network application

Ubiquiti, a company focusing on wired and wireless networking solutions, for SME businesses is reporting a critical vulnerability in their UniFi Network application. Ubiquiti's products, especially their professional WiFi access points, are widely recognized for their exellent functionality.

The vulnerability was discovered in instances of the UniFi Network application that run on a UniFi Gateway console with versions 7.5.176 and earlier. This flaw allows for insecure device adoption, potentially granting attackers access to device configuration details.

Note that for the attack to be successful, the attacker must already have access to the network. Despite this, the vulnerability has been marked as critically severe by Ubiquiti, scoring a maximum of 10.0 out of 10.0. Products affected include the entire Ubiquiti Dream range, such as UDM, UDM-PRO, UDM-SE, UDR, and UDW.

Ubiquiti released an update, and users are advised to upgrade their software to version 7.5.187 or higher for protection.

It seems that this time Ubiquiti is not leaving anything for chance - after several cybersecurity issues in the past, they are now pushing for a highly critical score and rapid patching.