CVE-2026-34910: Ubiquiti UniFi OS Improper Input Validation Vulnerability

A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection.
CVE-2026-34910CVSS 10.0CISA KEVKnown Exploited

CVE-2026-34910: Ubiquiti UniFi OS Improper Input Validation Vulnerability

A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection.

CVSS
10.0 CRITICAL
EPSS
99.54%
Known exploited
yes
Product
UniFi OS

What is known

A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection.

Sources