UniFi OS Command Injection via Improper Input Validation (CVE-2026-47370)
critical-cve-against-infra · active
A vulnerability in certain UniFi OS devices allows a network-adjacent attacker with low privileges to inject and execute commands due to improper input validation. The issue is tracked as CVE-2026-47370 and rated critical.