Tag: cve 2026 34909

2 articles

Modern server equipment in a well-lit network operations room with a city view.

UniFi OS Bug Lets Hackers Gain Root Without Authentication

A critical bug in UniFi OS can be exploited by hackers to gain root access without any login credentials, user interaction, or prior access, putting your system at risk. Three vulnerabilities, now patched, can be chained together to allow remote code execution with root privileges.

Analyst 207Jun 8, 2026

Network devices on a rack in a server room, highlighting potential vulnerability to exploitation.

Ubiquiti Fixes Maximum-Severity UniFi OS Flaws

Ubiquiti has patched three critical vulnerabilities in UniFi OS that left nearly 100,000 Internet-exposed endpoints, including 50,000 in the US, open to remote attacks without requiring login credentials. The fixes address severe flaws that could allow unauthorized system changes, file access, and even command injection.

Analyst 207May 22, 2026