CVE-2026-34911
Path Traversal in UniFi OS Devices
Publication date: 2026-05-22
Last updated on: 2026-05-22
Assigner: HackerOne
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ubiquiti | unifi_os | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-22 | The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. |
Attack-Flow Graph
AI Powered Q&A
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
This vulnerability allows a malicious actor with network access and low privileges to exploit a Path Traversal flaw in UniFi OS devices, potentially accessing sensitive information stored on the system.
Access to sensitive information through this vulnerability could lead to non-compliance with data protection regulations such as GDPR and HIPAA, which require safeguarding personal and sensitive data against unauthorized access.
Therefore, exploitation of this vulnerability may result in violations of these standards due to the exposure of protected information.
Can you explain this vulnerability to me?
This vulnerability is a Path Traversal flaw found in UniFi OS devices. It allows a malicious actor who has network access and low privileges to exploit the system by accessing files on the underlying operating system that they should not normally be able to reach.
By exploiting this vulnerability, the attacker can potentially manipulate these files to obtain sensitive information.
How can this vulnerability impact me? :
The impact of this vulnerability is that an attacker with network access and low privileges could gain unauthorized access to sensitive files on the system. This could lead to the exposure of confidential information.
Since the vulnerability has a high confidentiality impact (C:H) and a critical scope (S:C), it means that the attacker could access sensitive data without needing elevated privileges, potentially compromising the security of the affected device and any data it holds.