What is CVE-2026-48610?

CVE-2026-48610 is a high-severity vulnerability, classified under Improper Access Control. CVSS score: 8.1/10. Published 2026-06-12.

How severe is CVE-2026-48610?

High severity. CVSS v3 base score is 8.1 out of 10.

CVE-2026-48610

CVE-2026-48610

Under certain network configurations, a malicious actor with access to network could exploit an Improper Access Control vulnerability found in certain devices running UniFi OS to make unauthorized changes to such UniFi OS devices.

CVSS v3 metric

CVSS v3 base score 8.1 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H.

Weakness classification (CWE)

CWE-284 — Improper Access Control

References

support@hackerone.com

Frequently asked questions

What is CVE-2026-48610?: CVE-2026-48610 is a high-severity vulnerability, classified under Improper Access Control. CVSS score: 8.1/10. Published 2026-06-12.
How severe is CVE-2026-48610?: High severity. CVSS v3 base score is 8.1 out of 10.