CSIRTS // UNIFIED SECURITY ADVISORY FEEDSYS ● ONLINE · POWERED BY INTELFUSIONS.COM

NCSC-2026-0221 [1.00] [M/H] Vulnerabilities fixed in UniFi products from Ubiquiti Networks

unknownpublic exploitCVE-2026-50746CVE-2026-50747CVE-2026-50748CVE-2026-54400CVE-2026-54401CVE-2026-54402
Ubiquiti Networks has fixed vulnerabilities in various UniFi products, including UniFi Connect Application, UniFi Talk Application, UniFi Access Application, UniFi OS, UniFi Network Application, and UniFi Protect Application. The vulnerabilities affect multiple UniFi products and include command injection, SQL injection, improper input validation, improper access control, server-side request forgery (SSRF), path traversal, authentication bypass, and persistent privilege escalation. Attackers with network access, sometimes with limited privileges and sometimes after authentication, can execute arbitrary commands, escalate privileges, read or modify files, bypass authentication, and cause Denial of Service (DoS). Some vulnerabilities require user interaction, such as visiting a malicious website, while others can be exploited directly via network access. The vulnerabilities are present in applications and platforms used for network management, access control, video surveillance, and security monitoring within the UniFi product line.

CSIRTS triage

What
Various vulnerabilities in UniFi products allow attackers to execute arbitrary commands, escalate privileges, and cause denial of service.
Who is affected
Attackers with network access to UniFi products can exploit these vulnerabilities.
Urgency
Remediation is urgent due to the high potential for exploitation and impact.
Action
Update all affected UniFi products to the latest versions.

AI-assisted analysis generated from the source advisory — verify against the original.

⚡ Watch UniFi products

Get an email when a new UniFi products advisory drops — max one per day, one-click unsubscribe.

Details

Source
NCSC-NL Advisories (NL · national-cert · site)
Severity
unknown
Published
2026-07-07
Exploitation
Not in CISA KEV at last sync
Language
Machine-translated to English — verify against the original

Original advisory: https://advisories.ncsc.nl/advisory?id=NCSC-2026-0221

Exploitation outlook

EPSS (FIRST.org) estimates each CVE’s probability of exploitation in the next 30 days — here is the CSIRTS.com read on those numbers.

Referenced CVEs

CVECSIRTS overviewExternal
CVE-2026-50746coverage & exploitation statusNVD · CVE.org
CVE-2026-50747coverage & exploitation statusNVD · CVE.org
CVE-2026-50748coverage & exploitation statusNVD · CVE.org
CVE-2026-54400coverage & exploitation statusNVD · CVE.org
CVE-2026-54401coverage & exploitation statusNVD · CVE.org
CVE-2026-54402coverage & exploitation statusNVD · CVE.org
CVE-2026-54403coverage & exploitation statusNVD · CVE.org
CVE-2026-54404coverage & exploitation statusNVD · CVE.org
CVE-2026-54405coverage & exploitation statusNVD · CVE.org
CVE-2026-54406coverage & exploitation statusNVD · CVE.org
CVE-2026-54407coverage & exploitation statusNVD · CVE.org
CVE-2026-54408coverage & exploitation statusNVD · CVE.org
CVE-2026-54409coverage & exploitation statusNVD · CVE.org
CVE-2026-55110coverage & exploitation statusNVD · CVE.org
CVE-2026-55111coverage & exploitation statusNVD · CVE.org
CVE-2026-55112coverage & exploitation statusNVD · CVE.org
CVE-2026-55113coverage & exploitation statusNVD · CVE.org
CVE-2026-55114coverage & exploitation statusNVD · CVE.org
CVE-2026-55115coverage & exploitation statusNVD · CVE.org
CVE-2026-55116coverage & exploitation statusNVD · CVE.org
CVE-2026-55117coverage & exploitation statusNVD · CVE.org
CVE-2026-55118coverage & exploitation statusNVD · CVE.org
CVE-2026-55119coverage & exploitation statusNVD · CVE.org
CVE-2026-56841coverage & exploitation statusNVD · CVE.org
CVE-2026-56842coverage & exploitation statusNVD · CVE.org

Same CVEs, other sources

How other CERTs, PSIRTs and databases cover the vulnerabilities in this advisory.

Recent advisories for UniFi products from

A cluster of recent advisories against the same product widens the attack surface — attackers routinely chain freshly published CVEs on one product, so review these together.

More from NCSC-NL Advisories