BTC $71,807
2026 Bull Run Is Building Start trading with 5% OFF all fees
Sign Up Now
BTC $71,807
Bull Run 2026 | 5% Off Fees Open your Binance account today
Sign Up

Ubiquiti patches critical flaws in UniFi products

Ubiquiti patches seven critical UniFi flaws; CISA warns of prior weaponized attacks.

  • Ubiquiti released emergency patches for seven critical vulnerabilities across its UniFi product line, with CVSS scores ranging from 9.0 to 10.0.
  • The flaws affect UniFi Connect, Talk, Access, Protect, and OS, potentially enabling privilege escalation and arbitrary command execution by attackers on the network.
  • Three separate UniFi OS vulnerabilities were previously weaponized in real-world attacks, as flagged by the U.S. Cybersecurity and Infrastructure Security Agency (CISA).

Ubiquiti has shipped critical security updates to patch seven vulnerabilities across its UniFi Connect, UniFi Talk, UniFi Access, UniFi Protect, and UniFi OS platforms, according to a security advisory released on July 8, 2026. The most severe flaw, CVE-2026-50746, carries a CVSS score of 10.0 and allows an attacker with network access to execute command injection on the UniFi Connect Application host device.

- Advertisement -

Meanwhile, a series of authenticated SQL injection vulnerabilities in UniFi Talk (CVE-2026-50747) and improper input validation in UniFi Access (CVE-2026-50748) each earned a 9.9 CVSS score, enabling privilege escalation and command execution, respectively. Two additional flaws in UniFi OS (CVE-2026-54402 and CVE-2026-55116) could also lead to command injection or unauthorized device changes, with versions 5.1.15 and earlier affected.

While there is no evidence these specific flaws have been exploited in the wild, a set of three earlier UniFi OS vulnerabilities was flagged by the U.S. Cybersecurity and Infrastructure Security Agency (CISA) as having been weaponized in real-world attacks last month. Russian state-sponsored threat actors have also been observed enlisting compromised Ubiquiti Edge OS routers into a botnet dubbed MooBot, which was disrupted in a law enforcement operation in February 2024.

✅ Follow BITNEWSBOT on Telegram, Facebook, LinkedIn, X.com, and Google News for instant updates.

Previous Articles:

- Advertisement -
Ad
Altseason Is Loading. Don't watch from the sidelines.
SOL $90.51
DOGE $0.0963
LINK $9.02
SUI $1.00
5% off fees when you sign up
Start Trading
Ad
Pay Less on Every Trade. For Life.
$10K/mo volume Save $60/yr
$50K/mo volume Save $300/yr
$100K/mo volume Save $600/yr
5% off all trading fees when you sign up
Claim Your Discount

Latest News

Alphabet earnings call set July 22; Google stock flat at $363

Alphabet’s earnings call is set for July 22, 2026, with Google stock trading at...

Farage’s £5M crypto gift flagged to UK crime agency

A £5 million ($6.7 million) gift to Nigel Farage from Tether billionaire Christopher Harborne...

Solana and Dogecoin Post Biggest Losses in Crypto Top 10

Bitcoin fell below $62,000 after President Donald Trump declared the U.S.-Iran ceasefire "over," triggering...

Bitcoin Drops to $60k Amid Iran War Fears

Bitcoin has fallen to around $60,000 amid renewed fears of war with Iran and...

ESMA Launches EU-Wide Review of Crypto Custody Providers

The European Securities and Markets Authority is launching a common supervisory action targeting the...

Must Read

How Much Money Do You Need To Start In Crypto?

TL;DR -If you are wondering How Much Money Do You Need To Start In Crypto, note that is less than you are probably thinking....
Ad
Altseason Is Loading. These 4 coins are trending right now.
SOL $92.12
DOGE $0.0950
LINK $9.02
SUI $1.02
5% off spot fees when you sign up
Start Trading