Ubiquiti Issues Patches for Critical UniFi OS Privilege Escalation Vulnerabilities

Ubiquiti Networks released emergency security updates for five critical UniFi OS vulnerabilities, three rated CVSS 10.0, that enable unauthenticated remote code execution, path traversal, and privilege escalation across UCG, UDM, UNVR, UniFi OS Server and other models; administrators are urged to apply specified firmware updates immediately and restrict public access to management interfaces to mitigate risk.