VYPR

Unifi Connect Ev Station

by Ubiquiti Inc

CVEs (5)

  • CVE-2025-24285CriAug 21, 2025
    risk 0.64cvss 9.8epss 0.01

    Multiple Improper Input Validation vulnerabilities in UniFi Connect EV Station Lite may allow a Command Injection by a malicious actor with network access to the UniFi Connect EV Station Lite. Affected Products: UniFi Connect EV Station Lite (Version 1.5.1 and earlier) …

  • CVE-2024-29207HigMay 7, 2024
    risk 0.49cvss 7.5epss 0.00

    An Improper Certificate Validation could allow a malicious actor with access to an adjacent network to take control of the system. Affected Products: UniFi Connect Application (Version 3.7.9 and earlier) UniFi Connect EV Station (Version 1.1.18 and earlier) UniFi…

  • CVE-2024-29208LowMay 7, 2024
    risk 0.14cvss 2.2epss 0.00

    An Unverified Password Change could allow a malicious actor with API access to the device to change the system password without knowing the previous password. Affected Products: UniFi Connect EV Station (Version 1.1.18 and earlier) UniFi Connect EV Station Pro (Version…

  • CVE-2024-29206LowMay 7, 2024
    risk 0.14cvss 2.2epss 0.00

    An Improper Access Control could allow a malicious actor authenticated in the API to enable Android Debug Bridge (ADB) and make unsupported changes to the system. Affected Products: UniFi Connect EV Station (Version 1.1.18 and earlier) UniFi Connect EV Station Pro…

  • CVE-2026-21635Jan 5, 2026
    risk 0.00cvss epss 0.00

    An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite (v1.5.2 and earlier) to use WiFi AutoLink feature on a device that was only adopted via Ethernet.

VYPR — Vulnerability Intelligence