criticalCISA KEVCVE-2026-34909

Ubiquiti UniFi OS Path Traversal Vulnerability

Ubiquiti UniFi OS contains a path traversal vulnerability which could allow a malicious actor with access to the network to access files on the underlying system that could be manipulated to access an underlying account.

ProductUniFi OS
CVSS10.0
EPSS0.02269
UpdatedJuly 9, 2026

Quick answer

Ubiquiti UniFi OS should be reviewed and updated if it matches the affected versions. The recommended fix is to apply the vendor-supported patched version or the mitigation steps below, then retest the public website with Fixnx.

Who is affected

Affected versions

  • -

Fixed versions

  • Apply the latest vendor-supported patched version.

How to fix it

Ubiquiti UniFi OS is affected by a path traversal issue that may expose underlying system files and account material to an attacker with network access. Apply the UniFi OS security update, restrict management access, and review sensitive files and account state. Treat exposed systems as possible credential exposure incidents until logs are checked.

  1. Inventory UniFi OS consoles, gateways, CloudKeys, controllers, and appliances and record the running UniFi OS version.
  2. Upgrade affected devices to the fixed UniFi OS release from Ubiquiti Security Advisory Bulletin 064.
  3. Remove direct internet exposure and limit management access to trusted admin networks and MFA-protected users.
  4. Review system files, backups, SSH configuration, local users, API keys, and cloud-linked accounts for access or modification indicators.
  5. Inspect UniFi logs, reverse proxy logs, and network telemetry for path traversal attempts.
  6. Rotate UniFi administrator credentials, SSH keys, site secrets, VPN keys, and cloud credentials if sensitive file access is suspected.
  7. Restore from trusted backup or rebuild the appliance if account data or system integrity cannot be trusted.

Scan now. Google sign-in is only needed to unlock fix guidance.

Verify the fix

  • Confirm the UniFi OS version is fixed for CVE-2026-34909.
  • Validate traversal paths cannot access sensitive files after the update.
  • Review logs for suspicious file reads, authentication changes, or unexpected configuration exports.
  • Test device adoption, management, backups, VPN, and firewall workflows after remediation.
  • Run a Fixnx scan and confirm no public UniFi management exposure remains.

Related categories

Trusted references

FAQ

What is affected by CVE-2026-34909?

Ubiquiti UniFi OS versions listed as affected should be reviewed: -.

What should I fix first?

Start with internet-facing sites, admin panels, login flows, plugins, themes, modules, packages, and systems that process user-controlled input or sensitive data.

How do I confirm the fix worked?

Apply the patched version or mitigation, clear caches where relevant, retest the affected workflow, and run a new Fixnx scan to verify public website exposure signals.

Why can this risk appear in multiple categories?

A vulnerability can belong to more than one platform or ecosystem. Fixnx keeps one canonical risk page while also listing it in every relevant category.