Ubiquiti Networks

NewsSecurity Vulnerabilities

Ubiquiti Networks AI Pro Discovery Protocol Missing Encryption Protocol Downgrade Vulnerability (CVE-2026-21633)

– This vulnerability allows network-adjacent attackers to downgrade the communication protocol on affected installations of Ubiquiti Networks AI Pro.

Read More
NewsSecurity Vulnerabilities

Ubiquiti UniFi Connect EV Station Lite WiFi AutoLink Improper Access Control Vulnerability (CVE-2026-21635)

CVE number = CVE-2026-21635 An Improper Access Control could allow a malicious actor in Wi-Fi range to the EV Station

Read More
NewsSecurity Vulnerabilities

Ubiquiti Networks UniFi Console Missing Authentication for Critical Function Authentication Bypass Vulnerability (CVE-2025-23116)

– This vulnerability allows network-adjacent attackers to bypass authentication on affected Ubiquiti Networks UniFi Console devices.

Read More
NewsSecurity Vulnerabilities

Ubiquiti Networks AI Bullet Insufficient Firmware Update Validation Remote Code Execution Vulnerability (CVE-2025-23117)

– This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Ubiquiti Networks AI Bullet Cameras.

Read More
NewsSecurity Vulnerabilities

Ubiquiti Networks EV Station setDebugPortEnabled Exposed Dangerous Method Remote Code Execution Vulnerability [CVE-2024-29206]

CVE number = CVE-2024-29206 CVSS score = 8.0 This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations

Read More
NewsSecurity Vulnerabilities

Ubiquiti Networks EV Station EVCLauncher Improper Certificate Validation Vulnerability [CVE-2024-29207]

CVE number = CVE-2024-29207 CVSS score = 6.3 This vulnerability allows network-adjacent attackers to compromise the integrity of downloaded information

Read More
NewsSecurity Vulnerabilities

Ubiquiti Networks EV Station changeUserPassword Missing Authentication Remote Code Execution Vulnerability [CVE-2024-29208]

CVE number = CVE-2024-29208 CVSS score = 8.8 This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations

Read More