CVE-2025-23123

Critical CVSS: 10.0

A malicious actor with access to the management network could execute a remote code execution (RCE) by exploiting a heap buffer overflow vulnerability in the UniFi Protect Cameras (Version 4.75.43 and earlier) firmware.

Vendor

Product

CWE

CWE-122

Yayın Tarihi

2025-05-19 02:15:17

Güncelleme

2025-05-19 14:15:22

Source Identifier

support@hackerone.com

KEV Date Added

Kategoriler

CWE-122 CRITICAL 2025

Referanslar

https://community.ui.com/releases/Security-Advisory-Bulletin-047-047/cef86c37-7421-44fd-b251-84e76475a5bc