CVE-2025-24290

NONE EPSS 20.5%
Published Jun 29, 202512mo ago · Modified Jun 17, 20261w ago
Find Similar
Published Jun 29, 2025 12mo ago
Last Modified Jun 17, 2026 1w ago

Description

Multiple Authenticated SQL Injection vulnerabilities found in UISP Application (Version 2.4.206 and earlier) could allow a malicious actor with low privileges to escalate privileges.

Threat Intelligence

EPSS Exploit Probability
20.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-89 SQL Injection Injection

References 1

  • community.ui.com https://community.ui.com/releases/Security-Advisory-Bulletin-048-048/af007d99-bb6d-4368-a12f-75e84de19e8d

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.