Ubiquiti released security updates for UniFi OS to fix five vulnerabilities affecting widely deployed products including UniFi Cloud Gateway, UniFi Dream Machine, UNVR, NAS devices, consoles, and UniFi OS Server. Three flaws—CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910—were rated CVSS 10.0 and could be exploited by remote, unauthenticated attackers to change system settings, read sensitive files through path traversal, or trigger command injection that could lead to remote code execution. Two additional issues, CVE-2026-33000 and CVE-2026-34911, could also enable command injection, path traversal, privilege escalation, persistence, and data theft under certain conditions.
The vulnerabilities were reported through HackerOne, and Ubiquiti said they can be exploited with low complexity, although it did not say whether they had been abused before patches were issued. Government and national CERT advisories, including Canada’s Cyber Centre and Germany’s dCERT, directed administrators to review Ubiquiti bulletin 064 and apply updated firmware and software versions immediately. The risk is amplified by the large number of Internet-exposed UniFi OS systems—reportedly close to 100,000—because these appliances often sit at the network edge and can provide attackers with a path into internal environments if management interfaces are publicly reachable.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
5 events from the most recent confirmed update back to the earliest known activity.
On 2026-05-22, the Canadian Centre for Cyber Security published advisory AV26-498 urging administrators to review Ubiquiti's bulletin and apply the available updates. The notice highlighted the broad range of affected UniFi product families and vulnerable versions.
On 2026-05-22, CVE records including CVE-2026-34908, CVE-2026-34909, and CVE-2026-33000 were published or received in public vulnerability feeds, documenting improper access control, path traversal, and command injection issues in UniFi OS. The entries referenced Ubiquiti's Security Advisory Bulletin 064 and assigned critical severity metrics.
Ubiquiti released security updates for UniFi OS to fix five flaws affecting products such as UniFi Cloud Gateway, UniFi Dream Machine, UNVR, and UniFi OS Server. The issues included three critical unauthenticated bugs and two additional vulnerabilities that could enable command injection, path traversal, privilege escalation, or data theft.
On 2026-05-21, Ubiquiti published a security advisory covering multiple vulnerabilities across UniFi products, including UniFi OS-based gateways, consoles, NVRs, NAS devices, and UniFi OS Server. The advisory provided remediation guidance and linked to updated security releases.
On 2026-03-19, Cybernews reported a critical vulnerability in Ubiquiti's UniFi Network Application that could allow unauthenticated compromise. This appears to be a separate issue from the later May 2026 UniFi OS vulnerabilities already captured in the timeline.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
11 references tracked. Mallory keeps watching after this page renders.
ccb.belgium.be
Open sourcescworld.com
Open sourcecybersecuritynews.com
Open sourcecyber.gc.ca
Open sourcebleepingcomputer.com
Open sourcecvefeed.io
Open sourcecvefeed.io
Open sourcecybernews.com
Open sourceMap indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.