CVE-2026-34911
HighCVSS 7.7Exploitation Probability (EPSS)
Low risk47th percentile - higher than 47% of all known CVEs
Summary
A Path Traversal vulnerability in UniFi OS devices can be exploited by a malicious actor with network access and low privileges. This allows access to files on the underlying system that can be manipulated to obtain sensitive information.
Risk Assessment
The organization may be at risk of sensitive data leakage, which could lead to serious legal and reputational consequences.
Recommendation
It is recommended to update UniFi OS devices to the latest version to patch this vulnerability and to monitor network access for potential exploitation attempts.
Original NVD description (English source)
A malicious actor with access to the network and low privileges could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to obtain sensitive information.

