CVE-2026-34908

CRITICAL CISA KEV EPSS 82.4%
Published May 22, 20261mo ago · Modified Jun 24, 20264d ago
10.0 CVSS 3.1
Critical
Find Similar
Published May 22, 2026 1mo ago
Last Modified Jun 24, 2026 4d ago
KEV Listed Jun 23, 2026 6d ago
KEV Due Jun 26, 2026 3d overdue

Description

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS devices to make unauthorized changes to the system.

CVSS Details

Base Score
10.0
Exploitability
3.9
Impact
6.0
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Changed
Confidentiality High
Integrity High
Availability High

Threat Intelligence

CISA Known Exploited Overdue 3d
Added
Jun 23, 2026
Due
Jun 26, 2026

Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.

EPSS Exploit Probability
82.4% percentile
Exploit & Patch Status
Actively Exploited (KEV)
Patch Available

Weaknesses 1

CWE-284

Affected Products 61

VendorProductVersionRange
uiunifi_os_server* <5.0.8
uiunifi_cloud_gateway_industrial_firmware* <5.1.12
uiunifi_cloud_gateway_industrial*any
uiunifi_dream_machine_firmware* <5.1.12
uiunifi_dream_machine*any
uiunifi_dream_machine_pro_firmware* <5.1.12
uiunifi_dream_machine_pro*any
uiunifi_dream_machine_special_edition_firmware* <5.1.12
uiunifi_dream_machine_special_edition*any
uiunifi_dream_machine_pro_max_firmware* <5.1.12
uiunifi_dream_machine_pro_max*any
uienterprise_fortress_gateway_firmware* <5.1.12
uienterprise_fortress_gateway*any
uiunifi_dream_wall_firmware* <5.1.12
uiunifi_dream_wall*any
uiunifi_dream_router_firmware* <5.1.12
uiunifi_dream_router*any
uiunifi_dream_router_7_firmware* <5.1.12
uiunifi_dream_router_7*any
uiunifi_express_7_firmware* <5.1.12
uiunifi_express_7*any
uiunifi_network_video_recorder_firmware* <5.1.12
uiunifi_network_video_recorder*any
uiunifi_network_video_recorder_pro_firmware* <5.1.12
uiunifi_network_video_recorder_pro*any
uiunifi_network_video_recorder_instant_firmware* <5.1.12
uiunifi_network_video_recorder_instant*any
uienterprise_network_video_recorder_firmware* <5.1.12
uienterprise_network_video_recorder*any
uiunifi_cloud_gateway_ultra_firmware* <5.1.12
uiunifi_cloud_gateway_ultra*any
uiunifi_cloud_gateway_max_firmware* <5.1.12
uiunifi_cloud_gateway_max*any
uiunifi_cloud_gateway_fiber_firmware* <5.1.12
uiunifi_cloud_gateway_fiber*any
uiunifi_dream_router_5g_max_firmware* <5.1.12
uiunifi_dream_router_5g_max*any
uienterprise_network_video_recorder_core_firmware* <5.1.12
uienterprise_network_video_recorder_core*any
uiunifi_cloud_key_plus_firmware* <5.1.12
uiunifi_cloud_key_plus*any
uiunifi_cloudkey_firmware* <5.1.12
uiunifi_cloudkey*any
uiunifi_cloudkey_enterprise_firmware* <5.1.12
uiunifi_cloudkey_enterprise*any
uiunifi_network_video_recorder_g2_firmware* <5.1.12
uiunifi_network_video_recorder_g2*any
uiunifi_network_video_recorder_g2_pro_firmware* <5.1.12
uiunifi_network_video_recorder_g2_pro*any
uiunifi_dream_machine_beast_firmware* <5.1.11
uiunifi_dream_machine_beast*any
uiunas_2_firmware* <5.1.10
uiunas_2*any
uiunas_4_firmware* <5.1.10
uiunas_4*any
uiunas_pro_firmware* <5.1.10
uiunas_pro*any
uiunas_pro_4_firmware* <5.1.10
uiunas_pro_4*any
uiunas_pro_8_firmware* <5.1.10
uiunas_pro_8*any

References 3

  • community.ui.com https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b
    PatchVendor Advisory
  • cisa.gov https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-34908
    US Government Resource
  • pwndefend.com https://www.pwndefend.com/2026/06/09/cve-2026-34910-exploitation-itw-building-a-botnet-mirai/
    ExploitThird Party Advisory

Remediation

  • community.ui.com https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b
    PatchVendor Advisory