Log4j image.

Apache Log4j vulnerability

Summary

As many people are aware, a vulnerability was found in Log4j, a 3rd party library that is commonly used in Java-based applications (CVE-2021-44228).

While this vulnerability does not affect any of the Art of WiFi solutions (software and services), it does affect all UniFi Controller/Network Application versions before version 6.5.54.

Recommendations

We highly recommend all UniFi customers upgrade to 6.5.54 as soon as possible. When in doubt whether the Art of WiFi solution you’re using will work with that new UniFi Controller/Network Application release, please reach out to us:

External links

UniFi Controller/Network Application version 6.5.54

Official Mitre publication for CVE-2021-44228

Ubiquiti’s initial response to the CVE publication

Ubiquiti’s official Security Bulletin

Edit: added link to Ubiquiti’s Security Bulletin

Posted on: December 13th, 2021

On: Security

log4j

security

Share this on social media

Facebook
Twitter

Copyright © 2023 Art of WiFi

Facebook page Twitter page GitHub account Youtube channel LinkedIn page