Primary

Context

UISP Application Privilege Escalation Vulnerability via Authenticated SQL Injection

Vulnerability

A series of authenticated SQL injection vulnerabilities have been identified in the UISP Application, affecting versions through 2.4.206. These vulnerabilities could allow a malicious actor with low privileges to escalate privileges within the application.

Impact

Exploitation of these vulnerabilities could lead to unauthorized privilege escalation.

Remediation

Users are advised to update the UISP Application to version 2.4.211 or later.

Added: Jun 29, 2025, 8:18 PM

Updated: Jun 29, 2025, 8:18 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

UISP Application Privilege Escalation Vulnerability via Authenticated SQL Injection

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating