CVE-2022-22570
CRITICALUniFi Door Access Reader Lite <3.8.31.13 - Buffer Overflow
Title source: llmDescription
A buffer overflow vulnerability found in the UniFi Door Access Reader Lite’s (UA Lite) firmware (Version 3.8.28.24 and earlier) allows a malicious actor who has gained access to a network to control all connected UA devices. This vulnerability is fixed in Version 3.8.31.13 and later.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://community.ui.com/releases/Security-Advisory-Bulletin-024-024/22725557-0f72-4f5d-83b0-f16252fcd4b7
Scores
CVSS v3
10.0
EPSS
0.0054
EPSS Percentile
67.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-120
Status
published
Products (1)
ui/ua_lite_firmware
< 3.8.31.13
Published
Apr 01, 2022
Tracked Since
Feb 18, 2026