Improper access control in Ubiquiti Networks Client/Desktop applications

#VU93792 Improper access control in Ubiquiti Networks Client/Desktop applications

Published: 2024-07-04

Vulnerability identifier: #VU93792

Vulnerability risk: Low

CVSSv3.1: 2 [CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-29206

CWE-ID: CWE-284

Exploitation vector: Network

Exploit availability: No

Vendor: Ubiquiti Networks

Description

The vulnerability allows a remote user to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to improper access restrictions within the setDebugPortEnabled method. A remote administrator can enable Android Debug Bridge (ADB) and make unsupported changes to the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

UniFi Connect EV Station: 1.1.18

UniFi Connect EV Station Pro: 1.1.18

UniFi Access G2 Reader Pro: 1.2.172

UniFi Access Reader Pro: 2.7.238

UniFi Access Intercom: 1.0.66

UniFi Access Intercom Viewer: 1.0.5

UniFi Connect Display: 1.9.324

UniFi Connect Display Cast: 1.6.225

External links
http://community.ui.com/releases/Security-Advisory-bulletin-039-039/44e24007-2c2c-4ac0-bebf-3f19b9b24f09
http://www.zerodayinitiative.com/advisories/ZDI-24-881/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Ubiquiti Networks products