{"api_version":"1","generated_at":"2026-06-12T20:04:36+00:00","cve":"CVE-2026-47369","urls":{"html":"https://cve.report/CVE-2026-47369","api":"https://cve.report/api/cve/CVE-2026-47369.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-47369","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-47369"},"summary":{"title":"CVE-2026-47369","description":"A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in certain devices running UniFi OS to escalate privileges within such UniFi OS devices or instances.","state":"PUBLISHED","assigner":"hackerone","published_at":"2026-06-12 04:17:06","updated_at":"2026-06-12 16:10:10"},"problem_types":["CWE-20","CWE-20 CWE-20 Improper Input Validation"],"metrics":[{"version":"3.1","source":"support@hackerone.com","type":"Secondary","score":"9.9","severity":"CRITICAL","vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"}},{"version":"3.1","source":"CNA","type":"DECLARED","score":"9.9","severity":"CRITICAL","vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","data":{"baseScore":9.9,"baseSeverity":"CRITICAL","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","version":"3.1"}}],"references":[{"url":"https://community.ui.com/releases/Security-Advisory-Bulletin-065-065/aa46a22b-fc43-4eae-9382-6fc8feda967a","name":"https://community.ui.com/releases/Security-Advisory-Bulletin-065-065/aa46a22b-fc43-4eae-9382-6fc8feda967a","refsource":"support@hackerone.com","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-47369","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-47369","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"Ubiquiti Inc","product":"UniFi OS Server","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"Express","version":"affected 4.0.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UDM","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UDM-Pro","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UDM-SE","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UDM-Pro-Max","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UDM-Beast","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"EFG","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UDW","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UDR","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UDR7","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UDR-5G","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"Express 7","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNVR","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNVR-Pro","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNVR-Instant","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNVR-G2","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNVR-G2-Pro","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"ENVR","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"ENVR-Core","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNAS-2","version":"affected 5.1.16 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNAS-4","version":"affected 5.1.16 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNAS-Pro","version":"affected 5.1.16 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNAS-Pro-4","version":"affected 5.1.16 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UNAS-Pro-8","version":"affected 5.1.16 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UCKP","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UCK","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UCK-Enterprise","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UCG-Ultra","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UCG-Max","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UCG-Fiber","version":"affected 5.1.15 semver","platforms":[]},{"source":"CNA","vendor":"Ubiquiti Inc","product":"UCG-Industrial","version":"affected 5.1.15 semver","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"metrics":[{"other":{"content":{"id":"CVE-2026-47369","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","timestamp":"2026-06-12T14:10:08.220466Z","version":"2.0.3"},"type":"ssvc"}}],"providerMetadata":{"dateUpdated":"2026-06-12T14:18:35.223Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"defaultStatus":"unaffected","product":"UniFi OS Server","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"Express","vendor":"Ubiquiti Inc","versions":[{"lessThan":"4.0.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UDM","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UDM-Pro","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UDM-SE","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UDM-Pro-Max","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UDM-Beast","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"EFG","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UDW","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UDR","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UDR7","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UDR-5G","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"Express 7","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNVR","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNVR-Pro","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNVR-Instant","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNVR-G2","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNVR-G2-Pro","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"ENVR","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"ENVR-Core","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNAS-2","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.16","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNAS-4","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.16","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNAS-Pro","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.16","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNAS-Pro-4","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.16","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UNAS-Pro-8","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.16","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UCKP","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UCK","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UCK-Enterprise","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UCG-Ultra","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UCG-Max","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UCG-Fiber","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"UCG-Industrial","vendor":"Ubiquiti Inc","versions":[{"lessThan":"5.1.15","status":"affected","version":"0","versionType":"semver"}]}],"descriptions":[{"lang":"en","value":"A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in certain devices running UniFi OS to escalate privileges within such UniFi OS devices or instances."}],"metrics":[{"cvssV3_1":{"baseScore":9.9,"baseSeverity":"CRITICAL","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","version":"3.1"}}],"problemTypes":[{"descriptions":[{"cweId":"CWE-20","description":"CWE-20 Improper Input Validation","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-06-12T02:27:43.612Z","orgId":"36234546-b8fa-4601-9d6f-f4e334aa8ea1","shortName":"hackerone"},"references":[{"url":"https://community.ui.com/releases/Security-Advisory-Bulletin-065-065/aa46a22b-fc43-4eae-9382-6fc8feda967a"}]}},"cveMetadata":{"assignerOrgId":"36234546-b8fa-4601-9d6f-f4e334aa8ea1","assignerShortName":"hackerone","cveId":"CVE-2026-47369","datePublished":"2026-06-12T02:27:43.612Z","dateReserved":"2026-05-19T15:00:09.320Z","dateUpdated":"2026-06-12T14:18:35.223Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-06-12 04:17:06","lastModifiedDate":"2026-06-12 16:10:10","problem_types":["CWE-20","CWE-20 CWE-20 Improper Input Validation"],"metrics":{"cvssMetricV31":[{"source":"support@hackerone.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H","baseScore":9.9,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":6}]},"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"47369","Ordinal":"1","Title":"CVE-2026-47369","CVE":"CVE-2026-47369","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"47369","Ordinal":"1","NoteData":"A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in certain devices running UniFi OS to escalate privileges within such UniFi OS devices or instances.","Type":"Description","Title":"CVE-2026-47369"}]}}}