CVE-2026-34909
Path Traversal in UniFi OS Devices
Publication date: 2026-05-22
Last updated on: 2026-05-22
Assigner: HackerOne
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ubiquiti | unifi_os | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-22 | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Path Traversal flaw found in UniFi OS devices. It allows a malicious actor who has network access to exploit the system by navigating the file system in an unauthorized way. This can lead to accessing files on the underlying system that should normally be protected.
By exploiting this vulnerability, the attacker could manipulate these files to gain access to an underlying account on the device.
How can this vulnerability impact me? :
This vulnerability can have a severe impact because it allows an attacker to gain unauthorized access to sensitive files and accounts on UniFi OS devices.
The CVSS score of 10.0 indicates it is critical, meaning it can lead to complete compromise of confidentiality, integrity, and availability of the affected system.
- Unauthorized access to sensitive system files.
- Potential takeover of user accounts on the device.
- Full system compromise including data theft, manipulation, or denial of service.