ADVERTISEMENT

Ubiquiti UniFi OS devices targeted: CISA orders the patching of critical bugs

Having network access is all it takes for an attacker to access files, run arbitrary commands, and completely compromise a wide range of unpatched UniFi OS systems, including routers, firewalls, gateways, network video recorders, corporate software, and others. CISA warns that attackers are already exploiting critical bugs.

UniFi vulnerabilities exploited in the wild

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
Jun 25, 2026 Updated: 26 June 2026 2 min read
Key takeaways:
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.
ADVERTISEMENT
  • UniFi OS Server version 5.0.6 and earlier.
  • UniFi Cloud Gateways running UCG-Industrial Version 5.0.13 and earlier.
  • UniFi Dream Machine routers, security gateways/firewalls, network controllers, video recorders, and cloud gateway devices, UniFi Dream Machines, Enterprise Fortress Gateways, Dream Walls, Dream Routers, UniFi Express 7, UniFi Network Video Recorders, and other devices running software version 5.0.16 and earlier.
  • UniFi Dream Router 5G devices, enterprise video recorders, and Cloud Key network controllers running software version 5.0.17 and earlier.
  • UniFi Network Video Recorder second-generation devices ( UNVR-G2 and UNVR-G2-Pro, software version 5.1.11 and earlier
  • UniFi Dream Machine Beast routers and UniFi Network Attached Storage (NAS) devices running software version 5.1.8 and earlier.
  • UniFi Express networking devices running software version 4.0.13 and earlier.

ADVERTISEMENT