Ui Unifi_dream_machine_pro_firmware
5 CVEs affecting Ui Unifi_dream_machine_pro_firmware. Latest disclosed: 2026-05-22. Critical: 4, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-34910 | Critical | 10.0 | 2026-05-22 | A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection. |
CVE-2026-34909 | Critical | 10.0 | 2026-05-22 | A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system th… |
CVE-2026-34908 | Critical | 10.0 | 2026-05-22 | A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS devices to make unauthorized changes to t… |
CVE-2023-24104 | Critical | 9.8 | 2023-02-23 | Ubiquiti Networks UniFi Dream Machine Pro v7.2.95 allows attackers to bypass domain restrictions via crafted packets. |
CVE-2026-34911 | High | 7.7 | 2026-05-22 | A malicious actor with access to the network and low privileges could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the u… |