CVE-2025-24285

CRITICAL 9.8

CVSS Score

9.8

EPSS Score

0.0%

EPSS Percentile

0th

Multiple Improper Input Validation vulnerabilities in UniFi Connect EV Station Lite may allow a Command Injection by a malicious actor with network access to the UniFi Connect EV Station Lite. Affected Products: UniFi Connect EV Station Lite (Version 1.5.1 and earlier) Mitigation: Update UniFi Connect EV Station Lite to Version 1.5.2 or later

Vendor	ubiquiti inc
Product	unifi connect ev station lite
Published	Aug 21, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for ubiquiti inc unifi connect ev station lite

Be the first to know when new critical vulnerabilities affecting ubiquiti inc unifi connect ev station lite are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Ubiquiti Inc / UniFi Connect EV Station Lite

1.5.2 < 1.5.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

community.ui.com: https://community.ui.com/releases/Security-Advisory-Bulletin-052-052/ac1251ee-5bb5-4cdf-8a71-68acd1775bb6