CVE-2025-52663 (CNNVD-202510-4362)
中文标题:
Ubiquiti多款产品 安全漏洞
英文标题:
A vulnerability was identified in certain UniFi Talk devices where internal debugging functionality ...
漏洞描述
中文描述:
Ubiquiti UniFi Talk Touch等都是美国优比快(Ubiquiti)公司的一款IP电话机。 Ubiquiti多款产品存在安全漏洞,该漏洞源于内部调试功能意外启用,可能导致攻击者通过设备API调用内部调试操作。以下产品及版本受到影响:UniFi Talk Touch 1.21.16及之前版本、UniFi Talk Touch Max 2.21.22及之前版本和UniFi Talk G3 Phones 3.21.26及之前版本。
英文描述:
A vulnerability was identified in certain UniFi Talk devices where internal debugging functionality remained unintentionally enabled. This issue could allow an attacker with access to the UniFi Talk management network to invoke internal debug operations through the device API. Affected Products: UniFi Talk Touch (Version 1.21.16 and earlier) UniFi Talk Touch Max (Version 2.21.22 and earlier) UniFi Talk G3 Phones (Version 3.21.26 and earlier) Mitigation: Update the UniFi Talk Touch to Version 1.21.17 or later. Update the UniFi Talk Touch Max to Version 2.21.23 or later. Update the UniFi Talk G3 Phones to Version 3.21.27 or later.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| Ubiquiti Inc | UniFi Talk Touch | - | - | - |
cpe:2.3:a:ubiquiti_inc:unifi_talk_touch:*:*:*:*:*:*:*:*
|
| Ubiquiti Inc | UniFi Talk Touch Max | - | - | - |
cpe:2.3:a:ubiquiti_inc:unifi_talk_touch_max:*:*:*:*:*:*:*:*
|
| Ubiquiti Inc | UniFi Talk G3 Phones | - | - | - |
cpe:2.3:a:ubiquiti_inc:unifi_talk_g3_phones:*:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
参考链接
cve.org
CVSS评分详情
3.1 (adp)
HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2025-52663 |
2025-11-11 15:23:27 | 2025-11-11 07:40:40 |
| NVD | nvd_CVE-2025-52663 |
2025-11-11 15:01:07 | 2025-11-11 07:48:27 |
| CNNVD | cnnvd_CNNVD-202510-4362 |
2025-11-11 15:13:00 | 2025-11-11 08:00:20 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 其他
- cnnvd_id: 未提取 -> CNNVD-202510-4362
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- data_sources: ['cve'] -> ['cve', 'nvd']