CVE Catalog

CVE-2026-54403

HighCVSS 8.6
Published: Updated: Translated: NVD NIST

Summary

A Path Traversal vulnerability in devices running UniFi OS allows an attacker with network access to bypass authentication. The flaw affects specific UniFi OS devices or instances.

Risk Assessment

An attacker could gain unauthorized access to the UniFi OS device or instance, potentially leading to full compromise of the network device and breach of the entire infrastructure.

Recommendation

Immediately update UniFi OS to the latest version provided by the vendor and restrict network access to the devices to trusted hosts only.

Original NVD description (English source)

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in certain devices running UniFi OS to bypass authentication of such UniFi OS devices or instances.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS