CVE-2021-44530

Summary

An injection vulnerability exists in a third-party library used in UniFi Network Version 6.5.53 and earlier (Log4J CVE-2021-44228) allows a malicious actor to control the application.

Affected Software

VendorProductVersion RangeStatus
n/aUniFi Network applicationFixed in 6.5.54 and later.affected

Weaknesses

  • CWE-20: Improper Input Validation (CWE-20)

ADP Enrichment

CVE Program Container

Additional References

References