Ubiquiti has released new firmware for its wireless products that fall into the USG series. USG stands for UniFi Security Gateway and these products are intended to be used as a router. They include a powerful firewall, vlan options and vpn capabilities, and can be configured with the UniFi Controller, which can also control access points and switches, for example. The version number of this firmware is fixed at 4.4.51 and includes the following list of changes:
The PPPoE client security update fixes a vulnerability that allows an attacker on the same broadcast domain as your WAN to crash the pppd process, and may allow code execution on the system. Attempts at code execution are extremely unlikely to succeed from what is currently known, particularly since many attempts are likely to be required, and each attempt will crash pppd leaving you disconnected from the Internet until rebooting USG. The same broadcast domain requirement means compromising your DSL modem or ISP’s equipment is required to even attempt to do so. It is not exploitable from the Internet, nor from internal networks. While the immediate risk is minimal, we recommend all PPPoE users upgrade as soon as practical, in case a reliable code execution exploit is developed and ISPs and/or DSL modems start getting compromised to exploit it.
- Properly handle RADIUS server user passwords containing quotes and backslashes.
- Update PPPoE client with CVE-2020-8597 security patch.