Security advisory bulletin 043: Local privilege escalation vulnerability
Published onby Iron (edited on )
Security Advisory Bulletin 043: Local Privilege Escalation Vulnerability (here is the official link).
| Attribute | Details |
|---|---|
| Publication Date | October 16, 2024 |
| Bulletin Version | 1.0 |
| Revision | 1.0 |
| Vulnerability Description | Local privilege escalation vulnerability allowing high-privilege actions on the UniFi Network Server |
| Affected UniFi Network Versions | Version 8.4.62 and earlier |
| Mitigation | Update to Version 8.5.6 or later |
| CVSS Base Score | 8.8 High |
| CVE | CVE-2024-42028 |
| Reference Link | UniFi Network Application 8.5.6 Release |
Affected Products:
- UniFi Network Application (Version 8.4.62 and earlier)
UniHosted
We are a managed hosting service for your UniFi Controller. We prioritize security and stay ahead of issues like these to protect our users. If you would like me to personally walk you through UniHosted, you can schedule a call with me here.
We host UniFi Controllers in the Cloud
Are you ready to take your UniFi Network to the next level? Deploy a UniFi Cloud Controller in minutes and manage your network from anywhere.
Deploy Now
Free tier available
Get the best support
Join 1660+ customers
No credit card required