CVE-2026-55116
CriticalCVSS 9.0Summary
A vulnerability in UniFi OS allows unauthorized changes to devices by an attacker with network access under certain network configurations. The flaw is due to improper access control.
Risk Assessment
The organization faces the risk of unauthorized configuration changes to network devices, potentially compromising the integrity and security of the IT infrastructure.
Recommendation
It is recommended to immediately update UniFi OS to the latest version and review network configurations to restrict access to the devices.
Original NVD description (English source)
A malicious actor with access to the network and under certain network configurations could exploit an Improper Access Control vulnerability found in certain devices running UniFi OS to make unauthorized changes to such UniFi OS devices.

