Critical Security Vulnerability in Ubiquiti UniFi System Enables Unauthorized Access

Ubiquiti Patches Critical Vulnerabilities in UniFi Network Application

The latest security update from Ubiquiti addresses two vulnerabilities in the UniFi Network Application, one of which is considered to be of maximum severity and could potentially lead to user account takeovers.

The UniFi Network app, also known as the UniFi Controller, is a crucial management software designed to configure, monitor, and optimize Ubiquiti UniFi networking hardware such as access points, switches, and gateways.

Ubiquiti describes the UniFi Network as a comprehensive solution that combines powerful internet gateways with scalable WiFi and switching capabilities. It provides real-time traffic dashboards, visual topology maps, and optimization tips for network administrators. The company recommends deploying the UniFi Network on a UniFi Cloud Gateway for optimal performance.

The security flaw, tracked as CVE-2026-22557, affects UniFi Network application versions up to 10.1.85 and has been fixed in versions 10.1.89 and above. This vulnerability allows threat actors without privileges to exploit a path traversal flaw, gaining access to files on targeted devices and potentially seizing user accounts through low-complexity attacks that do not require user interaction.

Ubiquiti also addressed a second vulnerability in the UniFi Network app that could be exploited by attackers with low privileges to escalate their access privileges. This Authenticated NoSQL Injection vulnerability poses a risk to networks where attackers can potentially gain unauthorized access.

Over the years, Ubiquiti products have been targeted by various threat actors, including state-backed hacking groups and cybercriminals. In one notable incident in February 2024, the FBI dismantled a botnet of compromised Ubiquiti Edge OS routers used by Russia’s GRU to facilitate malicious activities targeting the US and its allies.

Protect Your Network with the Latest Security Updates