CVE-2026-22564
Received Received - Intake
Improper Access Control in UniFi Play Enables Unauthorized SSH

Publication date: 2026-04-13

Last updated on: 2026-04-13

Assigner: HackerOne

Description
An Improper Access Control vulnerability could allow a malicious actor with access to the UniFi Play network to enable SSH to make unauthorized changes to the system.
 Affected Products: UniFi Play PowerAmp (Version 1.0.35 and earlier)
 UniFi Play Audio Port  (Version 1.0.24 and earlier)
 Mitigation: Update UniFi Play PowerAmp to Version 1.0.38 or later
 Update UniFi Play Audio Port  to Version 1.1.9 or later
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-04-13
Last Modified
2026-04-13
Generated
2026-06-16
AI Q&A
2026-04-14
EPSS Evaluated
2026-06-15
NVD
CVE-2026-22564
EUVD
EUVD-2026-22093
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
ubiquiti unifi_play_poweramp to 1.0.36 (exc)
ubiquiti unifi_play_audio_port to 1.0.25 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-284 The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is an Improper Access Control issue in certain UniFi Play devices. It allows a malicious actor who already has access to the UniFi Play network to enable SSH access on the device. By enabling SSH, the attacker can make unauthorized changes to the system.

Impact Analysis

The impact of this vulnerability is severe because it allows an attacker to gain unauthorized control over affected devices. With SSH enabled, the attacker can make unauthorized system changes, potentially compromising the confidentiality, integrity, and availability of the device and any data it handles.

Mitigation Strategies

To mitigate this vulnerability, update your affected UniFi devices to the fixed versions.

  • Update UniFi Play PowerAmp to Version 1.0.38 or later.
  • Update UniFi Play Audio Port to Version 1.1.9 or later.
Compliance Impact

The vulnerability allows unauthorized access via SSH to make changes to the system, which could lead to unauthorized data access or modification.

Such unauthorized access and potential data compromise could negatively impact compliance with standards and regulations like GDPR and HIPAA, which require strict access controls and protection of sensitive data.

However, specific impacts on compliance are not detailed in the provided information.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-22564. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart