PT-2026-27489 · Ubiquiti · Unifi Network Server
Published
2026-03-24
·
Updated
2026-03-24
·
CVE-2026-22559
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
UniFi Network Server versions 10.1.85 and earlier
Description
An improper input validation issue exists in UniFi Network Server that could allow unauthorized access to an account if an account owner is tricked into clicking a malicious link. The issue involves a vulnerability where malicious links can be crafted to gain unauthorized access.
Recommendations
Update UniFi Network Server to version 10.1.89 or later.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Unifi Network Server