CVE-2025-52665

UniFi Access

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-52665 is a Remote Code Execution (RCE) vulnerability that exists in the UniFi Access Application. A malicious actor with access to the management network could exploit a misconfiguration in UniFi's door access application, UniFi Access, that exposed a management API without proper authentication. The vulnerability affects UniFi Access Application versions 3.3.22 through 3.4.31. To mitigate this vulnerability, it is recommended to update your UniFi Access Application to version 4.0.21 or later.

Description: -

Hype score is a measure of social media activity compared against trending CVEs from the past 12 months. Max score 100.

Hype score: 34

Awarded $25,000 (max bounty) by Ubiquiti for a Remote Code Execution (RCE) in UniFi Access Application via @Hacker0x01. CVE: CVE-2025-52665 (assigned). Patch is live → https://t.co/gstpJ1OmkA Huge thanks to the Ubiquiti security team. Full research will be published by the
@3zizMe_
23 Oct 2025
27269 Impressions
25 Retweets
257 Likes
59 Bookmarks
55 Replies
5 Quotes

References

Sources include official advisories and independent security research.

https://www.cve.org/CVERecord?id=CVE-2025-52665

Overview

AI description

Social media

References