Ubiquiti issues patches for three high-severity UniFi OS flaws exploitable remotely

May 22, 2026 at 09:29 PM

•

1 min read

Ubiquiti issues patches for three high-severity UniFi OS flaws exploitable remotely — Photo: BleepingComputer

TL;DR Summary

Ubiquiti released patches for three max-severity UniFi OS vulnerabilities (CVE-2026-34908/34909/34910) that allow remote attackers to change targeted systems, access underlying files, or inject commands, plus earlier patches for CVE-2026-33000 and CVE-2026-34911. The flaws can be exploited with low complexity on UniFi OS devices. Threat intel tracks nearly 100,000 internet-exposed UniFi OS endpoints (many in the U.S.); there’s no public confirmation of exploitation yet. The fixes were disclosed via HackerOne.

Topics:technology #cve-2026-34908 #cve-2026-34910 #security #ubiquiti #unifi-os #vulnerabilities

Share this article

Ubiquiti patches three max severity UniFi OS vulnerabilities BleepingComputer

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 4 min read

Condensed

90%

712 → 69 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights