QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2024-22054

Back to search

CVE-2024-22054

Published: Feb 20, 2024

Modified: Mar 27, 2025

PUBLISHED

Description

A malformed discovery packet sent by a malicious actor with preexisting access to the network could interrupt the functionality of device management and discovery. Affected Products: UniFi Access Points UniFi Switches UniFi LTE Backup UniFi Express (Only Mesh Mode, Router mode is not affected) Mitigation: Update UniFi Access Points to Version 6.6.55 or later. Update UniFi Switches to Version 6.6.61 or later. Update UniFi LTE Backup to Version 6.6.57 or later. Update UniFi Express to Version 3.2.5 or later.

VendorProductVersions

Ubiquiti Inc

UniFi Access Points

affected
6.6.55 - < 6.6.55

Ubiquiti Inc

UniFi Switches

affected
6.6.61 - < 6.6.61

Ubiquiti Inc

UniFi LTE Backup

affected
6.6.57 - < 6.6.57

Ubiquiti Inc

UniFi Express

affected
3.2.5 - < 3.2.5

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now