Primary

Context

Ubiquiti UniFi Protect Cameras Use-After-Free Vulnerability Allowing Remote Code Execution

Vulnerability

Patched

A use-after-free vulnerability has been identified in Ubiquiti UniFi Protect Cameras, all versions through 4.74.88. This vulnerability could allow remote code execution by a malicious actor with access to the camera management network.

Impact

Exploitation of this vulnerability could lead to unauthorized remote code execution on the affected camera system.

Remediation

Users are advised to update their UniFi Protect Cameras to version 4.74.106 or later.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

4.3

remediation

7.7

relevance

0.0

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

7.5

exploitability

4.3

remediation

7.7

relevance

0.0

threat

0.1

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Ubiquiti UniFi Protect Cameras Use-After-Free Vulnerability Allowing Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

Ubiquiti UniFi Protect Cameras

Ubiquiti UniFi Protect Application

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating