UniFi Site Manager: Console firmware likely security-relevant

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

↑ Back to Content Index

---

Identifies UniFi console / gateway devices (UDM, Cloud Key, USG, UXG, gateway) running firmware behind a major or minor version of the available release. Major/minor firmware jumps on consoles routinely include security advisory fixes (e.g. UniFi Security Advisory Bulletins). Patch-level updates are excluded since those are typically minor non-security bug fixes covered by the lower-severity FirmwareUpdateAvailable rule.

Attribute	Value
Type	Analytic Rule
Solution	UniFi Site Manager (CCF)
ID	4f7b9e6c-5d1a-4392-8c2b-3e4f5a6b7c8d
Severity	High
Status	Available
Kind	Scheduled
Tactics	InitialAccess
Techniques	T1190
Required Connectors	UniFiSiteManagerConnectorDefinition
Source	View on GitHub

Tables Used

This content item queries data from the following tables:

Table	Transformations	Ingestion API	Lake-Only
Unifi_SiteManager_Devices_CL	?	✓	?

---

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

↑ Back to Analytic Rules · Back to UniFi Site Manager (CCF)