CVE-2020-8157

MEDIUM

UniFi Cloud Key <v1.1.10 - Privilege Escalation

Title source: llm
STIX 2.1

Description

UniFi Cloud Key firmware <= v1.1.10 for Cloud Key gen2 and Cloud Key gen2 Plus contains a vulnerability that allows unrestricted root access through the serial interface (UART).

Scores

CVSS v3 6.8
EPSS 0.0034
EPSS Percentile 26.1%
Attack Vector PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-284
Status published
Products (2)
ui/unifi_cloud_key_gen2_firmware < 1.1.10
ui/unifi_cloud_key_gen2_plus_firmware < 1.1.10
Published May 02, 2020
Tracked Since Feb 18, 2026