Description
Due to vulnerabilities in Log4j library used by Ubiquiti Unifi, an unauthenticated attacker can leak sensitive information or execute arbitrary code on the system.
Remediation
Upgrade to the latest version of Ubiquiti Unifi
References
Related Vulnerabilities
Sitecore XP Deserialization RCE (CVE-2021-42237)
WordPress Plugin WebP Express Arbitrary File Disclosure (0.14.10)
vBulletin PHP object injection vulnerability
WordPress Plugin Direct Download for Woocommerce Arbitrary File Download (1.15)
WordPress 2.1.1 Command Execution Backdoor Vulnerability (2.1.1)