CVE-2021-22882
HIGHUniFi Protect Controller < 1.17.1 - Denial of Service via Spoofed Camera
Title source: llmDescription
UniFi Protect before v1.17.1 allows an attacker to use spoofed cameras to perform a denial-of-service attack that may cause the UniFi Protect controller to crash.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_misc
https://hackerone.com/reports/1008579
Vendor Advisory x_refsource_misc
https://community.ui.com/releases/Security-advisory-bulletin-017-017/071141e5-bc2e-4b71-81f3-5e499316fcee
Scores
CVSS v3
7.5
EPSS
0.0127
EPSS Percentile
66.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-400
Status
published
Products (1)
ui/unifi_protect_controller
< 1.17.1
Published
Feb 23, 2021
Tracked Since
Feb 18, 2026