CVE-2026-48610

CVSS v3.1

8.1

High

Vector

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Under certain network configurations, a malicious actor with access to network could exploit an Improper Access Control vulnerability found in certain devices running UniFi OS to make unauthorized changes to such UniFi OS devices.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2026-48610

Affected Products

Efg

Express 7

Ucg-Fiber

Ucg-Industrial

Ucg-Max

Ucg-Ultra

Udm

Udm-Beast

Udm-Pro

Udm-Pro-Max

Udm-Se

Udr

Udr-5G

Udr7

Udw

CVE-2026-48610

Weakness Enumeration

Related Identifiers

Affected Products

References · 2