Primary

Context

UISP Application Command Injection Vulnerability

Vulnerability

A command injection vulnerability has been identified in the UISP Application, specifically in versions through 2.4.211. This vulnerability arises from improper input validation, allowing a malicious actor with high privileges and local access to execute arbitrary commands.

Impact

Exploitation of this vulnerability could lead to unauthorized command execution on the affected system.

Remediation

Users are advised to update the UISP Application to version 2.4.220 or later.

Added: Aug 29, 2025, 12:20 AM

Updated: Aug 29, 2025, 12:20 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.8

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

2.8

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

UISP Application Command Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating