CVE-2025-24285

216.73.217.22

· Published 21/08/2025 01:15 · Modified 21/08/2025 14:15

Labels: CVE-2025-24285 2025-08-21 CVE-2025-24285 CWE-77 [email protected]

Essential information

Published: 21/08/2025 01:15
Modified: 21/08/2025 14:15
Author: —
Creator: —
CVSS: 9.8 CRITICAL (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

Multiple Improper Input Validation vulnerabilities in UniFi Connect EV Station Lite may allow a Command Injection by a malicious actor with network access to the UniFi Connect EV Station Lite. Affected Products: UniFi Connect EV Station Lite (Version 1.5.1 and earlier) Mitigation: Update UniFi Connect EV Station Lite to Version 1.5.2 or later

NVD status

Status: Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
ubiquiti / unifi connect ev station lite	`cpe:2.3:a:ubiquiti:unifi_connect_ev_station_lite:<1.5.2:::::::*`