CVE-2025-23123

Name of the Vulnerable Software and Affected Versions UniFi Protect Cameras versions 4.75.43 and earlier

Description A malicious actor with access to the management network could execute a remote code execution (RCE) by exploiting a heap buffer overflow vulnerability in the UniFi Protect Cameras firmware. The issue affects over 65,000 devices worldwide. There is no information about real-world incidents where this issue was exploited.

Recommendations Update UniFi Protect Cameras to Version 4.75.62 or later. As a temporary workaround, consider isolating cameras on a VLAN, enforcing unique credentials and multi-factor authentication, and monitoring logs immediately.