Ubiquiti Rushes Fixes for a 10-out-of-10 Flaw Across UniFi Gear
The networking vendor patched serious holes in UniFi Connect, Talk, Access, Protect and the underlying UniFi OS. One bug scores a perfect 10 on the severity scale.

Key points
- Ubiquiti has released patches for multiple critical flaws affecting five UniFi product lines: Connect, Talk, Access, Protect and UniFi OS.
- The worst bug, tracked as CVE-2026-50746, scores 10.0 out of 10 on the industry severity scale and lets attackers bypass access controls in the UniFi Connect Application.
- The flaws can allow privilege escalation, meaning attackers gain higher levels of access, and arbitrary command execution, meaning they can run their own instructions on the device.
- Ubiquiti hardware is widely used in offices, schools, hotels and smart homes, so the fix affects a lot of small networks.
Ubiquiti has pushed out emergency updates for a stack of serious security flaws in its UniFi product family, and at least one of them is as bad as these things get.
The company sells the networking kit you probably do not think about: the Wi-Fi access points bolted to office ceilings, the door-badge readers in coworking spaces, the small black boxes running video from security cameras. UniFi is the brand name for that gear and the software that runs it.
The headline bug is CVE-2026-50746. It carries a severity score of 10.0, the maximum. In plain English, it is an access-control failure in the UniFi Connect Application, which is the piece of software that lets administrators manage a fleet of UniFi devices from one place. An attacker who can reach that application over the network can slip past the checks that are supposed to keep them out.
The other patched flaws sit in UniFi Talk (the phone system), UniFi Access (the door-entry product), UniFi Protect (the video-camera platform) and UniFi OS itself, the operating system that ties the whole family together. According to reporting from The Hacker News, the bugs can lead to two nasty outcomes: privilege escalation, where an intruder promotes themselves from a limited user to an administrator, and arbitrary command execution, where they run whatever commands they like on the device.
Put those two together and you have the ingredients for a full takeover.
Should everyday customers be worried?
Most home users are not directly exposed, but small businesses and IT teams should update now.
Ubiquiti gear is popular with small and mid-sized organisations because it is cheap, capable and manageable from a phone. That same popularity means these boxes sit on tens of thousands of office networks, often with their management interface reachable from more places than the owner realises. A flaw that lets someone waltz past the login screen is not academic. It is the digital equivalent of a master key for the building's networking closet.
There is no public evidence yet that these bugs are being exploited in the wild. That does not buy defenders much time. Once a vendor publishes a patch, attackers routinely reverse-engineer it to work out what the fix changed, then hunt for machines that have not applied it.
Administrators should log into their UniFi console, check the version numbers against Ubiquiti's advisory, and apply the updates. If the management interface is exposed to the public internet, put it behind a VPN or restrict it to trusted addresses. That single step would blunt most opportunistic attacks against this class of bug.
Home users with a UniFi Dream Router or Cloud Gateway should let the device update itself, then reboot it for good measure.
This is the second round of serious UniFi patching in recent memory. The lesson is not that Ubiquiti is uniquely careless. It is that network gear is software, software has bugs, and the little box in the ceiling deserves the same patching discipline as the laptop on your desk.



