Ubiquiti Unveils 25 Security Vulnerabilities in UniFi Ecosystem

www.news4hackers.com-ubiquiti-unveils-25-security-vulnerabilities-in-unifi-ecosystem-ubiquiti-unveils-25-security-vulnerabilities-in-unifi-ecosystem

A leading networking equipment provider has identified 25 security flaws impacting its UniFi product line, with multiple critical vulnerabilities rated between 9.0 and 10.0 on the CVSS v3.1 scale.

Overview of the Vulnerabilities

The company’s Security Advisory Bulletin 066 outlines issues affecting UniFi OS operating on UDM, UNVR, and UNAS devices, alongside UniFi Connect, Talk, Access, Protect, Network Application, and Protect Floodlight. Unpatched systems remain at risk of remote exploitation, with some flaws enabling full device control through network-based attacks.

Critical Vulnerabilities Detailed

Most Severe Vulnerability

The most severe vulnerability, CVE-2026-50746, assigns a maximum CVSS score of 10.0. This flaw exists in UniFi Connect Application versions 3.4.16 and earlier, allowing unauthenticated attackers to execute command injection via improper access controls.

Other Critical Issues

Two other critical issues, CVE-2026-50747 and CVE-2026-50748, each rated 9.9, impact UniFi Talk and UniFi Access. These vulnerabilities involve SQL injection and input validation weaknesses, enabling low-privilege users to escalate permissions and seize control of affected systems. Additional critical flaws include CVE-2026-54402, an input validation error in UniFi OS; CVE-2026-55115, a server-side request forgery (SSRF)-based privilege escalation vulnerability in UniFi Protect; and CVE-2026-55116, an access control flaw affecting UDM gateway devices.

Recommended Security Measures

High-severity issues also exist, such as CVE-2026-54403, a path traversal vulnerability in UniFi OS that could be exploited alongside other flaws to bypass authentication mechanisms. Other risks include SQL injection, authentication bypass, cross-origin resource sharing (CORS) misconfigurations, and privilege escalation vectors across multiple components.

Security researchers note that enterprise networking platforms remain prime targets for adversaries, as compromised management devices can provide extensive access to connected infrastructure. Organizations are urged to treat internet-facing network controllers and management appliances as critical assets, ensuring timely application of security patches.

Conclusion

Ubiquiti has released updates for all affected products and recommends immediate upgrades. Specific version requirements include UniFi Connect 3.4.20 or later, UniFi Talk 5.2.2 or later, UniFi Access 4.2.29 or later, UniFi Network Application 10.4.57 or later, UniFi Protect 7.1.83 or later, UniFi Protect Floodlight 1.13.6 or later, and UniFi OS 5.1.19 or later. Security professionals advise prioritizing these updates, particularly for systems exposed to external networks, to mitigate risks of remote exploitation and unauthorized access.



About Author

en_USEnglish