Overview
First Published: December 6, 2021Version: 1.0
Revision: 1.0
Summary
A vulnerability found in UniFi Switch firmware Version 5.43.35 and earlier allows a malicious actor who has already gained access to the network to perform a Deny of Service (DoS) attack on the affected switch.
This vulnerability is fixed in UniFi Switch firmware 5.76.6 and later.
Affected Products:
UniFi Switches
Mitigation:
Update the UniFi Switch’s firmware to Version 5.76.6 or later.
Impact:
CVSS v3.0 Severity and Metrics:
Base Score: 6.5 Medium
Vector:
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVE: CVE-2021-44527 Youfu Zhang of Chaitin Security Research Lab
Reference Links:
https://community.ui.com/releases/USW-Firmware-5-76-6/7d24a554-9604-43c2-87a8-5cb40fe2940f