H3-2026-0046¶
Ubiquiti UniFi OS Authentication Bypass and Path Traversal Vulnerability
| Category | VULNERABILITY |
| Base Score | 10.0 |
Description¶
Ubiquiti UniFi OS contains an unauthenticated authentication bypass and path traversal in unifi-core's nginx URI normalization.
Impact¶
Unauthenticated remote attackers can reach normally-internal authenticated backend handlers in unifi-core.