NewsSecurity Vulnerabilities

Ubiquiti UniFi Connect EV Station Lite WiFi AutoLink Improper Access Control Vulnerability (CVE-2026-21635)

CVE number = CVE-2026-21635

An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station Lite (v1.5.2 and earlier) to use WiFi AutoLink feature on a device that was only adopted via Ethernet.

This affects UniFi Connect EV Station Lite (Version 1.5.2 and earlier)

To resolve this issue you need to update UniFi Connect EV Station Lite to Version 1.6.1 or later. 

Further details – https://community.ui.com/releases/Security-Advisory-Bulletin-059/0c0b7f7a-68b7-41b9-987e-554f4b40e0e6

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.