{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-08T04:44:17.014","vulnerabilities":[{"cve":{"id":"CVE-2024-29206","sourceIdentifier":"support@hackerone.com","published":"2024-05-07T17:15:08.027","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An Improper Access Control could allow a malicious actor authenticated in the API to enable Android Debug Bridge (ADB) and make unsupported changes to the system.\n\n \n\nAffected Products:\n\nUniFi Connect EV Station (Version 1.1.18 and earlier) \n\nUniFi Connect EV Station Pro (Version 1.1.18 and earlier)\n\nUniFi Access G2 Reader Pro (Version 1.2.172 and earlier)\n\nUniFi Access Reader Pro (Version 2.7.238 and earlier)\n\nUniFi Access Intercom (Version 1.0.66 and earlier)\n\nUniFi Access Intercom Viewer (Version 1.0.5 and earlier)\n\nUniFi Connect Display (Version 1.9.324 and earlier)\n\nUniFi Connect Display Cast (Version 1.6.225 and earlier)\n\n \n\nMitigation:\n\nUpdate UniFi Connect Application to Version 3.10.7 or later.\n\nUpdate UniFi Connect EV Station to Version 1.2.15 or later.   \n\nUpdate UniFi Connect EV Station Pro to Version 1.2.15 or later.\n\nUpdate UniFi Access G2 Reader Pro Version 1.3.37 or later.\n\nUpdate UniFi Access Reader Pro Version 2.8.19 or later.\n\nUpdate UniFi Access Intercom Version 1.1.32 or later.\n\nUpdate UniFi Access Intercom Viewer Version 1.1.6 or later.\n\nUpdate UniFi Connect Display to Version 1.11.348 or later. \n\nUpdate UniFi Connect Display Cast to Version 1.8.255 or later."},{"lang":"es","value":"Un control de acceso inadecuado podría permitir que un actor malicioso autenticado en la API habilite Android Debug Bridge (ADB) y realice cambios no compatibles en el sistema. Productos afectados: UniFi Connect EV Station (versión 1.1.18 y anteriores) UniFi Connect EV Station Pro (versión 1.1.18 y anteriores) UniFi Access G2 Reader Pro (versión 1.2.172 y anteriores) UniFi Access Reader Pro (versión 2.7.238 y anteriores) UniFi Access Intercom (versión 1.0.66 y anteriores) UniFi Access Intercom Viewer (versión 1.0.5 y anteriores) UniFi Connect Display (versión 1.9.324 y anteriores) UniFi Connect Display Cast (versión 1.6.225 y anteriores) Mitigación : Actualice la aplicación UniFi Connect a la versión 3.10.7 o posterior. Actualice UniFi Connect EV Station a la versión 1.2.15 o posterior. Actualice UniFi Connect EV Station Pro a la versión 1.2.15 o posterior. Actualice UniFi Access G2 Reader Pro versión 1.3.37 o posterior. Actualice UniFi Access Reader Pro versión 2.8.19 o posterior. Actualice UniFi Access Intercom versión 1.1.32 o posterior. Actualice UniFi Access Intercom Viewer versión 1.1.6 o posterior. Actualice UniFi Connect Display a la versión 1.11.348 o posterior. Actualice UniFi Connect Display Cast a la versión 1.8.255 o posterior."}],"metrics":{"cvssMetricV30":[{"source":"support@hackerone.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N","baseScore":2.2,"baseSeverity":"LOW","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":0.7,"impactScore":1.4}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-284"}]}],"references":[{"url":"https://community.ui.com/releases/Security-Advisory-bulletin-039-039/44e24007-2c2c-4ac0-bebf-3f19b9b24f09","source":"support@hackerone.com"},{"url":"https://community.ui.com/releases/Security-Advisory-bulletin-039-039/44e24007-2c2c-4ac0-bebf-3f19b9b24f09","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}