A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to access an underlying account.
References
| Link | Resource |
|---|---|
| https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b | Patch Vendor Advisory |
| https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-34909 | US Government Resource |
| https://www.pwndefend.com/2026/06/09/cve-2026-34910-exploitation-itw-building-a-botnet-mirai/ | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
Configuration 11 (hide)
| AND |
|
Configuration 12 (hide)
| AND |
|
Configuration 13 (hide)
| AND |
|
Configuration 14 (hide)
| AND |
|
Configuration 15 (hide)
| AND |
|
Configuration 16 (hide)
| AND |
|
Configuration 17 (hide)
| AND |
|
Configuration 18 (hide)
| AND |
|
Configuration 19 (hide)
| AND |
|
Configuration 20 (hide)
| AND |
|
Configuration 21 (hide)
| AND |
|
Configuration 22 (hide)
| AND |
|
Configuration 23 (hide)
| AND |
|
Configuration 24 (hide)
| AND |
|
Configuration 25 (hide)
| AND |
|
Configuration 26 (hide)
| AND |
|
Configuration 27 (hide)
| AND |
|
Configuration 28 (hide)
| AND |
|
Configuration 29 (hide)
| AND |
|
Configuration 30 (hide)
| AND |
|
Configuration 31 (hide)
| AND |
|
Configuration 32 (hide)
| AND |
|
History
24 Jun 2026, 14:49
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:ui:unifi_dream_router_7_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:enterprise_network_video_recorder_core:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_cloud_key_plus_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_cloudkey_enterprise_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_dream_machine_special_edition:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_network_video_recorder:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_network_video_recorder_instant:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_cloud_gateway_max_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_dream_machine_beast:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_dream_wall:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_cloud_key_plus:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unas_pro_4:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_cloud_gateway_fiber_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_cloudkey:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_dream_router_7:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_cloud_gateway_ultra_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_dream_wall_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_dream_machine_pro:-:*:*:*:*:*:*:* cpe:2.3:o:ui:enterprise_network_video_recorder_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_cloud_gateway_fiber:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_dream_router_5g_max:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unas_pro_4_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_cloud_gateway_ultra:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unas_4_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unas_pro_8_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:enterprise_network_video_recorder_core_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_cloudkey_enterprise:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unas_2_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_express_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_cloudkey_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_dream_router:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unas_4:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_cloud_gateway_industrial:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unas_pro:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_network_video_recorder_instant_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_express_7:-:*:*:*:*:*:*:* cpe:2.3:h:ui:enterprise_network_video_recorder:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_network_video_recorder_g2_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_network_video_recorder_pro:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_network_video_recorder_g2_pro:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_network_video_recorder_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:enterprise_fortress_gateway:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_dream_machine_beast_firmware:*:*:*:*:*:*:*:* cpe:2.3:a:ui:unifi_os_server:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_dream_router_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_dream_machine_pro_max:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_dream_machine:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unas_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_cloud_gateway_industrial_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_network_video_recorder_g2:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unas_pro_8:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_dream_router_5g_max_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:enterprise_fortress_gateway_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_dream_machine_pro_max_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_dream_machine_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_express_7_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_network_video_recorder_g2_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:ui:unas_2:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_express:-:*:*:*:*:*:*:* cpe:2.3:h:ui:unifi_cloud_gateway_max:-:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_network_video_recorder_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_dream_machine_special_edition_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:ui:unifi_dream_machine_firmware:*:*:*:*:*:*:*:* |
|
| First Time |
Ui unifi Dream Machine Beast
Ui unifi Cloud Gateway Max Firmware Ui unifi Dream Machine Pro Firmware Ui enterprise Network Video Recorder Core Ui unifi Dream Wall Ui unifi Dream Machine Pro Max Ui unas Pro Ui unifi Cloud Gateway Ultra Firmware Ui enterprise Fortress Gateway Firmware Ui unifi Cloud Gateway Fiber Firmware Ui unas 2 Firmware Ui unifi Cloudkey Ui unifi Cloudkey Enterprise Ui unifi Dream Wall Firmware Ui unifi Network Video Recorder G2 Firmware Ui Ui unifi Cloudkey Firmware Ui unifi Dream Router 7 Ui enterprise Network Video Recorder Ui unifi Dream Machine Special Edition Firmware Ui unifi Network Video Recorder Ui unifi Cloud Gateway Fiber Ui unifi Network Video Recorder Pro Ui unifi Express Ui unas 4 Firmware Ui unifi Express 7 Firmware Ui unifi Network Video Recorder G2 Pro Ui unifi Cloud Gateway Max Ui unifi Network Video Recorder Instant Ui unifi Dream Machine Beast Firmware Ui unifi Network Video Recorder Firmware Ui unifi Dream Router Firmware Ui unifi Dream Machine Firmware Ui unifi Dream Router 5g Max Firmware Ui unifi Cloudkey Enterprise Firmware Ui unas Pro Firmware Ui unifi Dream Router Ui unifi Cloud Key Plus Ui unifi Dream Machine Ui enterprise Fortress Gateway Ui unas 4 Ui unifi Dream Machine Pro Ui unifi Express Firmware Ui unifi Os Server Ui unifi Cloud Key Plus Firmware Ui unas Pro 4 Firmware Ui unas Pro 4 Ui unifi Cloud Gateway Ultra Ui unifi Dream Machine Pro Max Firmware Ui unifi Network Video Recorder G2 Pro Firmware Ui unifi Network Video Recorder G2 Ui unifi Dream Machine Special Edition Ui unas 2 Ui unifi Dream Router 5g Max Ui unifi Dream Router 7 Firmware Ui enterprise Network Video Recorder Core Firmware Ui unifi Cloud Gateway Industrial Ui unifi Network Video Recorder Instant Firmware Ui unas Pro 8 Ui unifi Network Video Recorder Pro Firmware Ui unifi Express 7 Ui unas Pro 8 Firmware Ui enterprise Network Video Recorder Firmware Ui unifi Cloud Gateway Industrial Firmware |
|
| References | () https://community.ui.com/releases/Security-Advisory-Bulletin-064-064/84811c09-4cf4-42ab-bd61-cc994445963b - Patch, Vendor Advisory | |
| References | () https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-34909 - US Government Resource | |
| References | () https://www.pwndefend.com/2026/06/09/cve-2026-34910-exploitation-itw-building-a-botnet-mirai/ - Exploit, Third Party Advisory |
23 Jun 2026, 18:17
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
22 May 2026, 02:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-05-22 02:16
Updated : 2026-06-24 14:49
NVD link : CVE-2026-34909
Mitre link : CVE-2026-34909
CVE.ORG link : CVE-2026-34909
JSON object : View
Products Affected
ui
- unifi_cloud_gateway_industrial_firmware
- unifi_os_server
- unifi_cloud_gateway_industrial
- unifi_network_video_recorder
- unifi_network_video_recorder_pro_firmware
- unifi_network_video_recorder_instant_firmware
- unas_4_firmware
- unifi_cloudkey
- unas_4
- unifi_dream_machine_special_edition_firmware
- unifi_dream_machine_firmware
- unifi_network_video_recorder_g2_pro
- unas_2_firmware
- unas_pro_8
- unifi_express_7_firmware
- unifi_express_firmware
- unifi_dream_router_5g_max
- unifi_network_video_recorder_firmware
- enterprise_network_video_recorder_firmware
- unifi_dream_router_7
- unifi_cloud_key_plus
- unifi_cloud_gateway_ultra
- unas_pro_firmware
- unifi_express
- unifi_network_video_recorder_g2_firmware
- enterprise_network_video_recorder
- unifi_dream_machine_beast_firmware
- unifi_cloud_gateway_max_firmware
- unifi_dream_machine_special_edition
- unifi_network_video_recorder_pro
- enterprise_fortress_gateway_firmware
- unifi_cloudkey_enterprise
- unas_2
- enterprise_network_video_recorder_core
- unas_pro
- unifi_network_video_recorder_g2_pro_firmware
- unifi_dream_router_7_firmware
- unas_pro_4_firmware
- unas_pro_8_firmware
- unifi_cloudkey_enterprise_firmware
- unifi_dream_machine_pro_max
- unifi_cloud_gateway_fiber
- unas_pro_4
- unifi_dream_wall_firmware
- unifi_dream_machine_pro
- unifi_dream_machine_beast
- unifi_dream_router
- unifi_network_video_recorder_instant
- unifi_cloud_gateway_max
- unifi_dream_wall
- unifi_dream_machine_pro_firmware
- unifi_dream_router_firmware
- unifi_dream_router_5g_max_firmware
- unifi_cloud_key_plus_firmware
- unifi_express_7
- enterprise_fortress_gateway
- enterprise_network_video_recorder_core_firmware
- unifi_dream_machine_pro_max_firmware
- unifi_network_video_recorder_g2
- unifi_cloudkey_firmware
- unifi_cloud_gateway_ultra_firmware
- unifi_dream_machine
- unifi_cloud_gateway_fiber_firmware
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')