12/14/23 replace with info from Ubiquiti added beneath.
Since yesterday, customers of Ubiquiti networking units, starting from routers to safety cameras, have reported seeing different folks’s units and notifications by means of the corporate’s UniFi cloud companies.
Ubiquiti is a well-liked networking system producer providing a cloud-based UniFi platform the place admins can handle all their units from a single cloud portal.
The primary report of those points was from yesterday morning at round 8 AM ET when a Ubiquiti buyer incorrectly obtained a notification by means of UniFi Shield from another person’s safety digital camera.
“I am reaching out for some recommendation relating to a peculiar scenario we encountered with UniFi Shield. Not too long ago, my spouse obtained a notification from UniFi Shield, which included a picture from a safety digital camera,” reads a Reddit put up.
“Nevertheless, here is the twist – this digital camera would not belong to us.”
To make issues worse, one other Ubiquiti buyer says that after they logged into the UniFi Website Supervisor portal to handle their units, they noticed 88 units from one other buyer’s account.
“Nevertheless this time I used to be introduced with 88 consoles from one other account. I had full entry to those consoles, simply as I might my very own. This was solely stopped once I compelled a browser refresh, and I used to be introduced once more with my consoles,” explains the UniFi buyer.
“That is considerably regarding, Has anybody else had this challenge?”
An analogous expertise occurred with others on Reddit who says they logged in and had entry to another person’s UDM Professional and have been capable of handle the system and create extra WiFi networks.
In each conditions, as soon as the portal internet web page was refreshed, they have been proven the units normally related to their accounts.
When BleepingComputer contacted Ubiquiti about these points, we have been informed they’re at present gathering info to evaluate what’s inflicting the problems. Ubiquiti says that they’ll challenge a press release after the evaluation is full.
Workers have already began gathering info on Reddit and the corporate’s boards, reaching out to impacted prospects to study extra about what occurred.
“This isn’t anticipated habits. We reached out by way of Reddit Chat to assemble extra particulars and have our leads evaluation instantly,” reads a remark from an Ubiquiti consultant on Reddit
Some prospects are skeptical that that is really taking place, saying that Ubiquiti ought to be given time to analyze the problem.
Nevertheless, different prospects are pissed off that Ubiquiti is not coming forth with a public assertion or itemizing it as a possible challenge on the corporate’s community standing web page, contemplating that customers are reporting that they will modify different’s networking configurations.
Attributable to UniFi entry misconfiguration
Ubiquiti has issued a press release saying that the bug permitting entry to different prospects’ units was attributable to a misconfiguration in an improve to the UniFi cloud infrastructure.
The corporate says that 1,216 Ubiquiti accounts, which they name “Group 1,” have been related to a separate group of 1,177 Ubiquiti accounts, referred to as “Group 2.“
This misconfiguration allowed accounts in Group 2 to obtain notifications meant for accounts in Group 1. It additional allowed Group 2 accounts to see the units of Group 1 prospects when logged into the UniFi cloud administration portal.
Ubiquiti says this challenge occurred on December 13, between 6:47 AM and three:45 PM UTC, and has since been mounted.
The corporate remains to be investigating the incident however believes that solely twelve accounts have been improperly accessed by different Ubiquiti prospects. Account holders whose accounts have been accessed by mistake can be notified by way of e-mail.