CVE-2025-23118 MEDIUM

CVE-2025-23118

Vendor Ubiquiti Inc
Product UniFi Protect Cameras
Published March 1, 2025
Last update March 4, 2025

CVSS base score

6.4/10
Attack vector Adjacent
Attack complexity High
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

An Improper Certificate Validation vulnerability could allow an authenticated malicious actor with access to UniFi Protect Cameras adjacent network to make unsupported changes to the camera system.

Key dates

02Disclosure timeline

March 1, 2025 CVE published
March 4, 2025 Record updated