CVE Catalog

CVE-2026-55116

CriticalCVSS 9.0
Published: Updated: Translated: NVD NIST

Summary

A vulnerability in UniFi OS allows unauthorized changes to devices by an attacker with network access under certain network configurations. The flaw is due to improper access control.

Risk Assessment

The organization faces the risk of unauthorized configuration changes to network devices, potentially compromising the integrity and security of the IT infrastructure.

Recommendation

It is recommended to immediately update UniFi OS to the latest version and review network configurations to restrict access to the devices.

Original NVD description (English source)

A malicious actor with access to the network and under certain network configurations could exploit an Improper Access Control vulnerability found in certain devices running UniFi OS to make unauthorized changes to such UniFi OS devices.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS