Home

Description

An Improper Input Validation in UISP Application could allow a Command Injection by a malicious actor with High Privileges and local access.

PUBLISHED Reserved 2025-05-29 | Published 2025-08-28 | Updated 2025-08-29 | Assigner hackerone

Product status

Default status
unaffected

2.4.220 before 2.4.220
affected

References

community.ui.com/...053/b0c4aa38-90aa-412d-b5b9-6395e057d822

cve.org (CVE-2025-48979)

nvd.nist.gov (CVE-2025-48979)

Download JSON