CVE-2026-47368

CVSS v3.1

8.6

High

Vector

AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in certain devices running UniFi OS to obtain data from such UniFi OS devices or instances.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2026-47368

Affected Products

Efg

Envr

Envr-Core

Express

Express 7

Ucg-Fiber

Ucg-Industrial

Ucg-Max

Ucg-Ultra

Uck

Uck-Enterprise

Uckp

Udm

Udm-Beast

Udm-Pro

Udm-Pro-Max

Udm-Se

Udr

Udr-5G

Udr7

Udw

Unas-2

Unas-4

Unas-Pro

Unas-Pro-4

Unas-Pro-8

Unvr

Unvr-G2

Unvr-G2-Pro

Unvr-Instant

Unvr-Pro

Unifi Os Server

CVE-2026-47368

Weakness Enumeration

Related Identifiers

Affected Products

References · 2