CVE-2026-34911 (GCVE-0-2026-34911)
Vulnerability from cvelistv5 – Published: 2026-05-22 00:43 – Updated: 2026-05-22 12:37
VLAI
Summary
A malicious actor with access to the network and low privileges could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to obtain sensitive information.
Severity
7.7 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-22 - Path Traversal
Assigner
References
1 reference
Impacted products
31 products
| Vendor | Product | Version | |
|---|---|---|---|
| Ubiquiti Inc | UniFi OS Server |
Affected:
0 , < 5.0.8
(semver)
|
|
| Ubiquiti Inc | UDM |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UDM-Pro |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UDM-SE |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UDM-Pro-Max |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UDM-Beast |
Affected:
0 , < 5.1.11
(semver)
|
|
| Ubiquiti Inc | EFG |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UDW |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UDR |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UDR7 |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UDR-5G |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | Express 7 |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UNVR |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UNVR-Pro |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UNVR-Instant |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UNVR-G2 |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UNVR-G2-Pro |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | ENVR |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | ENVR-Core |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UNAS-2 |
Affected:
0 , < 5.1.10
(semver)
|
|
| Ubiquiti Inc | UNAS-4 |
Affected:
0 , < 5.1.10
(semver)
|
|
| Ubiquiti Inc | UNAS-Pro |
Affected:
0 , < 5.1.10
(semver)
|
|
| Ubiquiti Inc | UNAS-Pro-4 |
Affected:
0 , < 5.1.10
(semver)
|
|
| Ubiquiti Inc | UNAS-Pro-8 |
Affected:
0 , < 5.1.10
(semver)
|
|
| Ubiquiti Inc | UCKP |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UCK |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UCK-Enterprise |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UCG-Ultra |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UCG-Max |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UCG-Fiber |
Affected:
0 , < 5.1.12
(semver)
|
|
| Ubiquiti Inc | UCG-Industrial |
Affected:
0 , < 5.1.12
(semver)
|
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2026-34911",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-05-22T12:37:38.876728Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-05-22T12:37:48.894Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "UniFi OS Server",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.0.8",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UDM",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UDM-Pro",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UDM-SE",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UDM-Pro-Max",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UDM-Beast",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.11",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "EFG",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UDW",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UDR",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UDR7",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UDR-5G",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "Express 7",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNVR",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNVR-Pro",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNVR-Instant",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNVR-G2",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNVR-G2-Pro",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "ENVR",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "ENVR-Core",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNAS-2",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.10",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNAS-4",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.10",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNAS-Pro",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.10",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNAS-Pro-4",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.10",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UNAS-Pro-8",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.10",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UCKP",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UCK",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UCK-Enterprise",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UCG-Ultra",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UCG-Max",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UCG-Fiber",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"product": "UCG-Industrial",
"vendor": "Ubiquiti Inc",
"versions": [
{
"lessThan": "5.1.12",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A malicious actor with access to the network and low privileges could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to obtain sensitive information."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-22",
"description": "CWE-22 Path Traversal",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-22T00:43:49.189Z",
"orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"shortName": "hackerone"
},
"references": [
{
"url": "https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
"assignerShortName": "hackerone",
"cveId": "CVE-2026-34911",
"datePublished": "2026-05-22T00:43:49.189Z",
"dateReserved": "2026-03-31T15:00:06.521Z",
"dateUpdated": "2026-05-22T12:37:48.894Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-34911",
"date": "2026-06-28",
"epss": "0.0068",
"percentile": "0.47768"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-34911\",\"sourceIdentifier\":\"support@hackerone.com\",\"published\":\"2026-05-22T02:16:34.667\",\"lastModified\":\"2026-06-24T15:15:58.477\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A malicious actor with access to the network and low privileges could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to obtain sensitive information.\"}],\"affected\":[{\"source\":\"support@hackerone.com\",\"affectedData\":[{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UniFi OS Server\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.0.8\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UDM\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UDM-Pro\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UDM-SE\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UDM-Pro-Max\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UDM-Beast\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.11\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"EFG\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UDW\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UDR\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UDR7\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UDR-5G\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"Express 7\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNVR\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNVR-Pro\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNVR-Instant\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNVR-G2\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNVR-G2-Pro\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"ENVR\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"ENVR-Core\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNAS-2\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.10\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNAS-4\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.10\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNAS-Pro\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.10\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNAS-Pro-4\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.10\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UNAS-Pro-8\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.10\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UCKP\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UCK\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UCK-Enterprise\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UCG-Ultra\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UCG-Max\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UCG-Fiber\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"Ubiquiti Inc\",\"product\":\"UCG-Industrial\",\"defaultStatus\":\"unaffected\",\"versions\":[{\"version\":\"0\",\"lessThan\":\"5.1.12\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"support@hackerone.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N\",\"baseScore\":7.7,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.1,\"impactScore\":4.0}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-05-22T12:37:38.876728Z\",\"id\":\"CVE-2026-34911\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"no\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"support@hackerone.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-22\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ui:unifi_os_server:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.0.8\",\"matchCriteriaId\":\"660F20FA-9862-4FE1-8C27-0AEAEE2F2A69\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_cloud_gateway_industrial_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"37D51815-9B4B-4753-9907-141E183A29AE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_cloud_gateway_industrial:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABDECBF6-CB92-4AF6-A3AB-D4AA4635B688\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_dream_machine_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"4C302996-B127-48DD-9652-44C120351EE2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_dream_machine:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33E04DDA-88A0-47C1-8AE2-2F59B1A08BAF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_dream_machine_pro_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"B6C4EB63-3ED5-4A5E-9C70-446159333C34\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_dream_machine_pro:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B493983E-8632-4492-9B0A-E8E11E0E0BB2\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_dream_machine_special_edition_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"FFDF1A5E-2127-4F22-88FE-72185E1D102D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_dream_machine_special_edition:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEF52155-86F1-458A-8B7E-355B67C5C819\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_dream_machine_pro_max_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"131427ED-219F-44D7-AF4C-1EE2EBF0C0FF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_dream_machine_pro_max:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"60808A48-C41A-448F-97C4-B1CD8DCCB4DA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:enterprise_fortress_gateway_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"CDD13CAB-C444-43CF-8E56-D3B3EF5208FC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:enterprise_fortress_gateway:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C87C188-7982-4DFF-98F1-58511360F3E3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_dream_wall_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"4991C6F7-E443-4CA3-8EA5-C71D1252B300\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_dream_wall:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A9B6514E-2878-4AEE-BF1E-08B804C069FE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_dream_router_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"8D73F0DB-0E95-44B0-9CC0-BFEBB0582ECC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_dream_router:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1FF6A5E-A223-4F57-9FFD-F2AE473B3627\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_dream_router_7_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"9BAF5DAD-7403-4811-B2F3-490F72CB5C0D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_dream_router_7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A41E5541-FC13-430C-BDCA-CC677B372D7F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_express_7_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"56E176C6-07DB-4E14-B41C-4AC34CAAC1B7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_express_7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5CD0201D-D5C9-4CE7-A302-467F602D73D2\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_network_video_recorder_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"7EC49DF3-4CB0-491E-A4E9-46EE6C2CDD3C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_network_video_recorder:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A5D7AF0C-CF50-485D-8471-9AB1AA6471CA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_network_video_recorder_pro_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"D83F4DFB-C975-4E3C-A045-AAE24EB7C54F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_network_video_recorder_pro:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87FB08DA-35EA-4C27-AA5F-2B7AE25D58FA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_network_video_recorder_instant_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"E78B7448-6777-4488-BDA9-C0514FC7BB6B\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_network_video_recorder_instant:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC8EB74F-F32A-4A5E-B613-58F2F7BC24CB\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:enterprise_network_video_recorder_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"4FFB1B14-CFB2-45D3-AA35-FBA93A4D5606\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:enterprise_network_video_recorder:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"348BBC75-CA5B-4B38-A2CF-28313B7168F5\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_cloud_gateway_ultra_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"CA783309-29D0-40C6-9B4A-D961A486CBCC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_cloud_gateway_ultra:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C468BFA-A87B-4A3F-B12C-B3BCE225167C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_cloud_gateway_max_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"20690D42-B607-4E40-8D87-B8715838BD1F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_cloud_gateway_max:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"022225AB-7AF9-4F7A-97A2-CD8700DEA087\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_cloud_gateway_fiber_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"0C1DF011-B148-4706-90D9-55DB0FD9A3E2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_cloud_gateway_fiber:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"01C00466-E414-4DF7-8752-93D3D77C5104\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_dream_router_5g_max_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"8F12DAB1-E58E-4044-A799-792A3DD59642\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_dream_router_5g_max:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA957B87-E4D2-4B7C-AC27-200BFC44477E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:enterprise_network_video_recorder_core_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"47600BC6-7DDF-4ABA-A0C6-1E3C6C4E67B1\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:enterprise_network_video_recorder_core:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD22580F-1E63-48F0-BE9C-1EA9328DD539\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_cloud_key_plus_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"29802116-2569-4863-B830-AF6C054BCDE2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_cloud_key_plus:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C4ED829-08E6-4330-B105-DC01A3159C90\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_cloudkey_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"638BF6B4-4DBF-43C7-A355-3FE897029F2D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_cloudkey:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A484BC77-24D3-423F-AC16-3341C3396BA1\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_cloudkey_enterprise_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"E132D457-330E-43DF-BC6D-956A9C65E9C5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_cloudkey_enterprise:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDD7812E-3548-4B2C-9416-DEE0985AB07C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_network_video_recorder_g2_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"4FFBED72-FDF6-4487-B6FA-AEF0BBA7BF07\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_network_video_recorder_g2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1FF59AE-F5F6-4539-97EC-5157F67FD055\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_network_video_recorder_g2_pro_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.12\",\"matchCriteriaId\":\"1B19E2F5-A96A-45E5-B625-435C5951BEB0\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_network_video_recorder_g2_pro:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"29A3E3E6-68EF-43E6-9AB3-AD52FCADE57F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unifi_dream_machine_beast_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.11\",\"matchCriteriaId\":\"5C1D3765-2301-4C60-BC5E-865650E214E5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unifi_dream_machine_beast:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82A0A6D7-4361-49AD-87E3-3FB32A958C4E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unas_2_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.10\",\"matchCriteriaId\":\"16AF18D8-1301-4B8D-AD23-5EF5BB2182AA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unas_2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FC98765-1006-49C1-9464-92428738170A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unas_4_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.10\",\"matchCriteriaId\":\"522AF8E6-5095-42D0-AAC5-38DBC76536F4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unas_4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A68133D0-7571-4E6C-A5F5-AAD2DFE91B80\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unas_pro_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.10\",\"matchCriteriaId\":\"3ACD7950-1346-460C-9B07-6A57103E1298\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unas_pro:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF0AD026-E7CD-4783-8B5B-BF50CFEF8F37\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unas_pro_4_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.10\",\"matchCriteriaId\":\"0B75FAFD-6176-4B36-85B9-9D9FB314FCF0\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unas_pro_4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A57444B-B60E-4AE0-A198-C85546D94126\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:ui:unas_pro_8_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.1.10\",\"matchCriteriaId\":\"DA7EECEA-6628-4CD7-A336-78D8AEBD049A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:ui:unas_pro_8:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63EC6593-E65D-4287-BB47-0EC53BCA7BAB\"}]}]}],\"references\":[{\"url\":\"https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b\",\"source\":\"support@hackerone.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-34911\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-22T12:37:38.876728Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-22T12:37:44.037Z\"}}], \"cna\": {\"metrics\": [{\"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.7, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N\"}}], \"affected\": [{\"vendor\": \"Ubiquiti Inc\", \"product\": \"UniFi OS Server\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.0.8\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UDM\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UDM-Pro\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UDM-SE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UDM-Pro-Max\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UDM-Beast\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.11\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"EFG\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UDW\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UDR\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UDR7\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UDR-5G\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"Express 7\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNVR\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNVR-Pro\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNVR-Instant\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNVR-G2\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNVR-G2-Pro\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"ENVR\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"ENVR-Core\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNAS-2\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.10\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNAS-4\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.10\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNAS-Pro\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.10\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNAS-Pro-4\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.10\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UNAS-Pro-8\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.10\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UCKP\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UCK\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UCK-Enterprise\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UCG-Ultra\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UCG-Max\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UCG-Fiber\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Ubiquiti Inc\", \"product\": \"UCG-Industrial\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.1.12\", \"versionType\": \"semver\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A malicious actor with access to the network and low privileges could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to obtain sensitive information.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-22\", \"description\": \"CWE-22 Path Traversal\"}]}], \"providerMetadata\": {\"orgId\": \"36234546-b8fa-4601-9d6f-f4e334aa8ea1\", \"shortName\": \"hackerone\", \"dateUpdated\": \"2026-05-22T00:43:49.189Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-34911\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-22T12:37:48.894Z\", \"dateReserved\": \"2026-03-31T15:00:06.521Z\", \"assignerOrgId\": \"36234546-b8fa-4601-9d6f-f4e334aa8ea1\", \"datePublished\": \"2026-05-22T00:43:49.189Z\", \"assignerShortName\": \"hackerone\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…