CVE-2026-22557

Summary

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in the UniFi Network Application to access files on the underlying system that could be manipulated to access an underlying account.

Affected Software

VendorProductVersion RangeStatus
Ubiquiti IncUniFi Network Application10.1.89 < 10.1.89affected
Ubiquiti IncUniFi Network Application10.2.97 < 10.2.97affected
Ubiquiti IncUniFi Network Application9.0.118 < 9.0.118affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References