PT-2021-5212 · Ubiquiti · Unifi Switches

Published

2021-12-06

Updated

2021-12-07

CVE-2021-44527

CVSS v3.1

6.5

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions UniFi Switch versions 5.43.35 and earlier

Description A vulnerability found in UniFi Switch firmware allows a malicious actor who has already gained access to the network to perform a Deny of Service (DoS) attack on the affected switch. The issue is related to an uncontrolled resource consumption.

Recommendations For versions 5.43.35 and earlier, update to UniFi Switch firmware 5.76.6 or later to resolve the issue.

Fix

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

BDU:2021-06014

CVE-2021-44527

Affected Products

Unifi Switches

PT-2021-5212 · Ubiquiti · Unifi Switches

CVE-2021-44527

Weakness Enumeration

Related Identifiers

Affected Products

References · 7