-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security

Vulnerability Details

Registries

Custom Views

Weaknesses

Attack Patterns

Filters & Tools

unifi_express

Source -

NVD

CNA CVEs -

0

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

1

Related CVEs Related Vendors Related Assigners Reports

1Vulnerabilities found

Assigner-HackerOne

Assigner-HackerOne

CVSS Score-10||CRITICAL

EPSS-0.90% / 54.84%

||

7 Day CHG+0.27%

Published-22 May, 2026 | 00:43

Updated-24 Jun, 2026 | 14:49

Rejected-Not Available

Known To Be Used In Ransomware Campaigns?-Not Available

KEV Added-Not Available

KEV Action Due Date-Not Available

Known KEV||Action Due Date - 2026-06-26||Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to access an underlying account.

Action-Not Available

Vendor-Ubiquiti Inc.

Product-unifi_network_video_recorder_instant_firmware unifi_cloud_gateway_fiber unifi_dream_machine_pro_firmware enterprise_network_video_recorder_firmware unifi_dream_machine_firmware unifi_express unifi_cloud_key_plus_firmware unifi_cloudkey_firmware unifi_network_video_recorder_g2_pro unifi_express_7 unifi_dream_machine_beast_firmware unas_4_firmware enterprise_fortress_gateway_firmware unifi_express_7_firmware unifi_cloud_gateway_fiber_firmware unas_2_firmware unas_pro_4_firmware unifi_express_firmware unifi_network_video_recorder_instant unifi_dream_machine_special_edition unas_pro_8_firmware unifi_dream_machine_pro_max_firmware unifi_network_video_recorder_firmware unas_4 unifi_cloud_gateway_max unas_pro_4 unifi_network_video_recorder_g2_firmware unifi_dream_router_firmware unifi_cloudkey_enterprise enterprise_network_video_recorder unifi_cloud_gateway_industrial_firmware unifi_cloud_key_plus unifi_dream_router unifi_dream_wall_firmware unifi_network_video_recorder_pro_firmware unifi_dream_router_7_firmware unifi_network_video_recorder_g2 unifi_dream_router_5g_max_firmware enterprise_fortress_gateway enterprise_network_video_recorder_core_firmware unifi_cloud_gateway_industrial unas_pro unas_2 unifi_dream_wall unifi_dream_machine_beast unas_pro_firmware unifi_cloud_gateway_ultra unas_pro_8 enterprise_network_video_recorder_core unifi_os_server unifi_network_video_recorder unifi_cloudkey unifi_dream_router_7 unifi_dream_machine unifi_dream_machine_pro_max unifi_dream_router_5g_max unifi_network_video_recorder_pro unifi_network_video_recorder_g2_pro_firmware unifi_cloud_gateway_max_firmware unifi_dream_machine_pro unifi_cloudkey_enterprise_firmware unifi_cloud_gateway_ultra_firmware unifi_dream_machine_special_edition_firmware UNVR-G2 ENVR-Core UCK-Enterprise Express 7 UDM-SE ENVR EFG UDR7 UDW UNVR UDR-5G UDM-Pro UNAS-Pro-4 UDR UniFi OS Server UNAS-2 UCG-Ultra UDM-Pro-Max UNAS-4 UCK Express UNVR-Instant UNVR-Pro UCG-Max UDM UDM-Beast UNAS-Pro-8 UNAS-Pro UNVR-G2-Pro UCKP UCG-Fiber UCG-Industrial UniFi OS

CWE ID-CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')