[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f8Rgullb-_jpZhhM1hGb5t9XG4PCPJ7jIJRLp034jgQc":3},{"article":4,"iocs":45},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":32,"category":33,"article_tags":37},"82486a36-4f27-491c-a588-fabd0a81b0c6","Ubiquiti patches three max severity UniFi OS vulnerabilities","ubiquiti-patches-three-max-severity-unifi-os-vulnerabilities-26bdb3","Ubiquiti has released security updates to patch three maximum severity vulnerabilities in UniFi OS that can be exploited by remote attackers without privileges. [...]","Ubiquiti has released security updates to address three maximum severity vulnerabilities (CVE-2026-34908, CVE-2026-34909, CVE-2026-34910) in UniFi OS. These flaws could allow remote attackers to make unauthorized changes, access files, and launch command injection attacks. Ubiquiti also patched CVE-2026-33000 and CVE-2026-34911.","Ubiquiti patched three maximum severity vulnerabilities in UniFi OS exploitable by remote attackers without privileges.","Ubiquiti patches three max severity UniFi OS vulnerabilities By Sergiu Gatlan May 22, 2026 08:00 AM 2 Ubiquiti has released security updates to patch three maximum severity vulnerabilities in UniFi OS that can be exploited by remote attackers without privileges. UniFi OS is a unified operating system that powers UniFi Consoles and helps manage IT infrastructure, including networking, security, and other services, as well as UniFi applications such as UniFi Network, UniFi Protect, UniFi Access, UniFi Talk, and UniFi Connect. The first flaw (CVE-2026-34908) enables attackers to make unauthorized changes to targeted systems by exploiting an Improper Access Control weakness in UniFi OS, while the second (CVE-2026-34909) allows them to access files on the underlying system by abusing a Path Traversal vulnerability, which could be manipulated to access an underlying account. A third maximum severity security issue (CVE-2026-34910) makes it possible for malicious actors to launch a command injection attack after gaining network access by exploiting an Improper Input Validation vulnerability. On Thursday, Ubiquiti also patched a second critical command injection flaw (CVE-2026-33000) and a high-severity information disclosure (CVE-2026-34911), both affecting Unifi OS devices. Ubiquiti has yet to disclose whether any of the five vulnerabilities were exploited in the wild before disclosure, but shared that they can be exploited in low-complexity attacks and were reported through its HackerOne bug bounty program. At the moment, threat intelligence company Censys is tracking nearly 100,000 Internet-exposed UniFi OS endpoints, most of them (nearly 50,000 IP addresses) found in the United States. However, there is currently no information on how many have been secured against potential attacks targeting the vulnerabilities Ubiquiti patched this week. UniFi OS endpoints exposed online (Censys) ​In March, Ubiquiti patched another maximum-severity flaw (CVE-2026-22557) in the UniFi Network Application that may allow attackers to take over user accounts, as well as a vulnerability (CVE-2026-22558) that can be exploited to escalate privileges. Ubiquiti products have been targeted by both state-backed hacking groups and cybercriminals in recent years, in campaigns that hijacked them to build botnets that concealed the threat actors' malicious activity. For instance, in February 2024, the FBI took down Moobot, a botnet of hacked Ubiquiti Edge OS routers used by Russia's Main Intelligence Directorate of the General Staff (GRU) to proxy malicious traffic in cyberespionage attacks targeting the United States and its allies. Four years ago, in April 2022, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) also added a critical command injection flaw (CVE-2010-5330) in Ubiquiti AirOS to its catalog of actively exploited vulnerabilities and ordered federal agencies to secure their devices within three weeks. The Validation Gap: Automated Pentesting Answers One Question. You Need Six. Automated pentesting tools deliver real value, but they were built to answer one question: can an attacker move through the network? They were not built to test whether your controls block threats, your detection rules fire, or your cloud configs hold.This guide covers the 6 surfaces you actually need to validate. Download Now Related Articles: Max severity Ubiquiti UniFi flaw may allow account takeoverPalo Alto GlobalProtect VPN auth bypass flaw now exploited in attacksNew CIFSwitch Linux flaw gives root on multiple distributionsNew Gogs zero-day flaw lets hackers get remote code executionHackers exploit FortiClient EMS flaw to push infostealer malware","https:\u002F\u002Fwww.bleepingcomputer.com\u002Fnews\u002Fsecurity\u002Fubiquiti-patches-three-max-severity-unifi-os-vulnerabilities\u002F","https:\u002F\u002Fwww.bleepstatic.com\u002Fcontent\u002Fhl-images\u002F2026\u002F05\u002F22\u002FUbiquiti-red.jpg","2026-05-22T12:00:42+00:00","2026-05-22T14:00:25.218292+00:00",9,[18,21,24,26,28,30],{"name":19,"type":20},"Ubiquiti","vendor",{"name":22,"type":23},"UniFi OS","product",{"name":25,"type":23},"UniFi Network",{"name":27,"type":23},"UniFi Protect",{"name":29,"type":23},"UniFi Access",{"name":31,"type":23},"UniFi Talk","80544778-fabb-4dcd-aa35-17492e5dcf4f",{"id":32,"icon":34,"name":35,"slug":36},null,"Vulnerabilities","vulnerabilities",[38,40],{"category":39},{"id":32,"icon":34,"name":35,"slug":36},{"category":41},{"id":42,"icon":34,"name":43,"slug":44},"d6f63bb8-0801-486a-be7f-171400700454","IoT\u002FOT","iot-ot",[46,50,53,56,59,62,65,68],{"type":47,"value":48,"context":49},"cve","CVE-2026-34908","Improper Access Control vulnerability in UniFi OS",{"type":47,"value":51,"context":52},"CVE-2026-34909","Path Traversal vulnerability in UniFi OS",{"type":47,"value":54,"context":55},"CVE-2026-34910","Improper Input Validation vulnerability in UniFi OS leading to command injection",{"type":47,"value":57,"context":58},"CVE-2026-33000","Critical command injection flaw in Unifi OS",{"type":47,"value":60,"context":61},"CVE-2026-34911","High-severity information disclosure in Unifi OS",{"type":47,"value":63,"context":64},"CVE-2026-22557","Maximum-severity flaw in the UniFi Network Application",{"type":47,"value":66,"context":67},"CVE-2026-22558","Vulnerability that can be exploited to escalate privileges in UniFi Network Application",{"type":47,"value":69,"context":70},"CVE-2010-5330","Critical command injection flaw in Ubiquiti AirOS"]