Ubiquiti has published details about a new CVE that has affected a multitude of different UniFi software platforms and devices. Security Advisory Bulletin 064 contains five security issues, affecting physical Ubiquiti devices, ranging from UDM Pro, UDM-Beast, UNVR-G2 and many others. This is also affecting UniFi OS Server.

What is Security Advisory Bulletin 064?

Security Advisory Bulletin 064 contains five separate CVE vulnerabilities and the issues relate to improper and unauthorised access to the system and affects physial hardware running UniFi OS and HostiFi servers running UniFi OS Server.

More information about Security Advisory Bulletin 064 can be found on the Ubiquiti Community Post.

What has HostiFi done to address this issue?

All servers running UniFi OS Server have been automatically patched and updated to UniFi OS 5.0.8. Those customers running UniFi Network are not affected by this security vulnerability.