Unifi iOS App Vulnerability Allows Malicious Actor to Take Control of Access Point
CVE-2024-45205
Currently unrated
What is CVE-2024-45205?
An Improper Certificate Validation on the UniFi iOS App managing a standalone UniFi Access Point (not using UniFi Network Application) could allow a malicious actor with access to an adjacent network to take control of this UniFi Access Point.
Affected Products: UniFi iOS App (Version 10.17.7 and earlier)
Mitigation: UniFi iOS App (Version 10.18.0 or later).