CVE-2026-34909

Published May 22, 2026

Last updated 22 days ago

CVSS critical 10.0
Server

Overview

Description
A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to access an underlying account.
Source
support@hackerone.com
NVD status
Deferred

Risk scores

CVSS 3.1

Type
Secondary
Base score
10
Impact score
6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Severity
CRITICAL

Weaknesses

support@hackerone.com
CWE-22

Social media

Hype score
Not currently trending

  1. The security issues are tracked as CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910. They have been addressed in May and impact UniFi OS Server versions 5.0.6 and earlier. https://t.co/crmGei8ucH

    @jbhall56

    9 Jun 2026

    34 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨新たなShai-Huludサプライチェーン攻撃で科学分野の人気PyPIパッケージ19件が侵害される ⚠️UniFi OSの重大な脆弱性により、認証なしでrootを取得することが可能に(CVE-2026-34908、CVE-2026-34909、CVE-2026-34910) 〜

    @MachinaRecord

    9 Jun 2026

    112 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. Ubiquiti UniFi OS server vulnerabilities allow unauthenticated remote code execution https://t.co/82l4jQDkYj The security flaws, tracked as CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910, were addressed in May and impacted UniFi OS Server versions 5.0.6 and earlier.

    @f1tym1

    8 Jun 2026

    56 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. Three chained CVEs (CVE-2026-34908, CVE-2026-34909, CVE-2026-34910) allow unauthenticated RCE with root on Ubiquiti UniFi OS Server 5.0.6 and earlier. Upgrade to 5.0.8+ and use Bishop Fox's detection script to check for compromise. #DFIR_Radar https://t.co/oqryQS4i0R

    @DFIR_Radar

    8 Jun 2026

    173 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  5. Ubiquiti社UniFi OSでCVSSスコア10の脆弱性3件が修正。認証ゲートウェイ回避のCVE-2026-34908及びCVE-2026-34909、並びにパッケージ更新サービスでのコマンドインジェクションCVE-2026-34910。Bishop Fox社からrootシェルを取れる

    @__kokumoto

    8 Jun 2026

    2026 Impressions

    6 Retweets

    14 Likes

    9 Bookmarks

    0 Replies

    0 Quotes

  6. ⚠️ Vulnerabilidades en productos Ubiquiti ❗ CVE-2026-34910 ❗ CVE-2026-34909 ❗ CVE-2026-34908 ➡️ Más info: https://t.co/fD9rCbaHcM https://t.co/RRhKZMHess

    @CERTpy

    3 Jun 2026

    97 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. Warning: #Ubiquiti has released a security advisory bulletin addressing multiple critical vulnerabilities in #UniFi OS, including CVE-2026-34908, CVE-2026-34909, CVE-2026-34910, CVE-2026-33000. Risks ranges from unauthorised changes to command injection: https://t.co/mwPib2vEpg

    @CCBalert

    26 May 2026

    220 Impressions

    1 Retweet

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. 【UniFi OSに最大深刻度の脆弱性、公開管理面は早期更新を】 UbiquitiがUniFi OSの複数脆弱性を修正しました。特にCVE-2026-34908、CVE-2026-34909、CVE-2026-34910は最大深刻度として扱われています。

    @01ra66it

    26 May 2026

    294 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  9. 🚨 THREE maximum severity flaws (CVSS 10.0) in Ubiquiti UniFi OS. CVE-2026-34908 — Improper Access Control CVE-2026-34909 — Path Traversal CVE-2026-34910 — Command Injection 🔗 https://t.co/d95XqoeA4b #CyberSecurity #Ubiquiti #UniFi #CVE202634908 #CVE202634909 #CVE20

    @ThreatAft

    25 May 2026

    81 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  10. CVE-2026-34908, CVE-2026-34909 & CVE-2026-34910: Vulnerabilities in Ubiquiti UniFi OS, 10.0 rating 🔥🔥🔥 Three new vulnerabilities in Ubiquiti UniFi OS allow an network attacker to make unauthorized changes, access files and execute arbitrary command. It may cause to

    @Netlas_io

    23 May 2026

    1489 Impressions

    6 Retweets

    26 Likes

    14 Bookmarks

    0 Replies

    0 Quotes

Related CVEs

  1. A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS devices to make unauthorized changes to the system.CVE-2026-34908
  2. A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection.CVE-2026-34910
  3. A malicious actor with access to the network and low privileges could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to obtain sensitive information.CVE-2026-34911
  4. A malicious actor with access to the network and high privileges could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection.CVE-2026-33000
  5. Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.167, a remote, unauthenticated denial of service (DoS) vulnerability affects Deskflow servers running with TLS enabled (the default). When any TCP peer connects to the listening port and its first bytes do not parse as a valid TLS ClientHello, SecureSocket::secureAccept enters its fatal-error branch and calls Arch::sleep(1) (a blocking 1-second sleep) on the multiplexer worker thread. That thread services every socket on the server, including established TLS clients delivering mouse motion, keyboard events, and clipboard updates. A single failed handshake therefore stalls input delivery to all connected screens for ~1 second, and a sustained drip of malformed connections (≥ 1/s) makes the server effectively unusable while the attack persists. This vulnerability is fixed in 1.26.0.167.CVE-2026-44296

References

Sources include official advisories and independent security research.