{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-11T02:12:44.724","vulnerabilities":[{"cve":{"id":"CVE-2025-27212","sourceIdentifier":"support@hackerone.com","published":"2025-08-04T23:15:27.963","lastModified":"2026-04-15T00:35:42.020","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"An Improper Input Validation in certain UniFi Access devices could allow a Command Injection by a malicious actor with access to UniFi Access management network.\r\n\r\n \r\n\r\nAffected Products:\r\nUniFi Access Reader Pro (Version 2.14.21 and earlier)\r\nUniFi Access G2 Reader Pro (Version 1.10.32 and earlier)\r\nUniFi Access G3 Reader Pro (Version 1.10.30 and earlier)\r\nUniFi Access Intercom (Version 1.7.28 and earlier)\r\nUniFi Access G3 Intercom (Version 1.7.29 and earlier)\r\nUniFi Access Intercom Viewer (Version 1.3.20 and earlier)\r\n\r\n \r\n\r\nMitigation:\r\nUpdate UniFi Access Reader Pro Version 2.15.9 or later\r\nUpdate UniFi Access G2 Reader Pro Version 1.11.23 or later\r\nUpdate UniFi Access G3 Reader Pro Version 1.11.22 or later\r\nUpdate UniFi Access Intercom Version 1.8.22 or later\r\nUpdate UniFi Access G3 Intercom Version 1.8.22 or later\r\nUpdate UniFi Access Intercom Viewer Version 1.4.39 or later"},{"lang":"es","value":"Una validación de entrada incorrecta en ciertos dispositivos UniFi Access podría permitir una inyección de comandos por parte de un actor malicioso con acceso a la red de administración de UniFi Access. Productos afectados: UniFi Access Reader Pro (versión 2.14.21 y anteriores) UniFi Access G2 Reader Pro (versión 1.10.32 y anteriores) UniFi Access G3 Reader Pro (versión 1.10.30 y anteriores) UniFi Access Intercom (versión 1.7.28 y anteriores) UniFi Access G3 Intercom (versión 1.7.29 y anteriores) UniFi Access Intercom Viewer (versión 1.3.20 y anteriores) Mitigación: Actualizar UniFi Access Reader Pro versión 2.15.9 o posterior Actualizar UniFi Access G2 Reader Pro versión 1.11.23 o posterior Actualizar UniFi Access G3 Reader Pro versión 1.11.22 o posterior Actualizar UniFi Access Intercom versión 1.8.22 o posterior Actualizar UniFi Access G3 Intercom versión 1.8.22 o posterior Actualizar UniFi Access Intercom Viewer versión 1.4.39 o posterior"}],"metrics":{"cvssMetricV31":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}]},"weaknesses":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-20"},{"lang":"en","value":"CWE-77"}]}],"references":[{"url":"https://community.ui.com/releases/Security-Advisory-Bulletin-051-051/583fa6e1-3d85-42ec-a453-651d1653c9b3","source":"support@hackerone.com"}]}}]}