Description
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS devices to make unauthorized changes to the system.
Published: 2026-05-22
Score: 10 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Based on the description, it is inferred that an improper access control flaw in Ubiquiti UniFi OS devices allows an attacker who can reach the local network to change system settings without authorization. The vulnerability, classified as CWE‑284, may enable unauthorized modification of configuration, compromising device integrity, availability, and potentially exposing the broader network.

Affected Systems

All UniFi OS devices from Ubiquiti, including EFG, ENVR, ENVR‑Core, Express 7, UCG‑Fiber, UCG‑Industrial, UCG‑Max, UCG‑Ultra, UCK, UCK‑Enterprise, UCKP, UDM, UDM‑Beast, UDM‑Pro, UDM‑Pro‑Max, UDM‑SE, UDR, UDR‑5G, UDR7, UDW, UNAS‑2, UNAS‑4, UNAS‑Pro, UNAS‑Pro‑4, UNAS‑Pro‑8, UNVR, UNVR‑G2, UNVR‑G2‑Pro, UNVR‑Instant, UNVR‑Pro, and UniFi OS Server.

Risk and Exploitability

The flaw carries a CVSS score of 10, indicating maximum impact. Based on the description, it is inferred that an attacker with basic network access to any affected device can exploit the access control lapse without additional credentials. EPSS data is not available, and the issue is not listed in the CISA KEV catalog, but the high severity and lack of prerequisite conditions suggest a substantial risk to any network hosting these devices.

Generated by OpenCVE AI on May 22, 2026 at 03:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update all UniFi OS devices to the latest firmware or software builds released by Ubiquiti.
  • Limit management traffic to the UniFi OS controllers by placing them in a dedicated VLAN or applying firewall rules so only trusted hosts may communicate with them.
  • Enable logging of configuration changes and review logs regularly to detect unauthorized modifications.

Generated by OpenCVE AI on May 22, 2026 at 03:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 22 May 2026 03:45:00 +0000

Type Values Removed Values Added
Title Improper Access Control in UniFi OS Devices Enables Unauthorized Configuration Changes

Fri, 22 May 2026 01:30:00 +0000

Type Values Removed Values Added
Description A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS devices to make unauthorized changes to the system.
Weaknesses CWE-284
References
Metrics cvssV3_1

{'score': 10, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published:

Updated: 2026-05-22T00:43:49.077Z

Reserved: 2026-03-31T15:00:06.521Z

Link: CVE-2026-34908

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-22T02:16:34.240

Modified: 2026-05-22T02:16:34.240

Link: CVE-2026-34908

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-22T03:30:25Z

Weaknesses