CVE-2026-50747

Ubiquiti · UniFi Talk Application

Authenticated SQL injection vulnerabilities in the UniFi Talk Application allow low-privileged network attackers to escalate privileges on the host device.

Executive summary

A critical SQL injection vulnerability in the Ubiquiti UniFi Talk Application permits authenticated attackers to escalate privileges, potentially leading to full host compromise.

Vulnerability

This vulnerability consists of a series of SQL injection flaws within the application. An attacker with low-privileged network access can leverage these flaws to execute arbitrary database queries and escalate their privileges on the underlying host.

Business impact

Successful exploitation of this flaw allows an attacker to bypass security controls and gain elevated administrative rights. Given the CVSS score of 9.9, the impact to confidentiality, integrity, and availability is severe, potentially leading to complete unauthorized control over the UniFi Talk environment and sensitive communication data.

Remediation

Immediate Action: Apply the latest security update provided by Ubiquiti for the UniFi Talk Application immediately.

Proactive Monitoring: Review application and database access logs for unusual query patterns or unexpected privilege escalation events.

Compensating Controls: Implement strict network segmentation to limit access to the UniFi Talk interface to authorized personnel only, reducing the attack surface.

Exploitation status

Public Exploit Available: No

Analyst recommendation

The severity of this SQL injection vulnerability necessitates immediate attention. Administrators must prioritize updating the UniFi Talk Application to the latest version to patch the underlying code flaws. Failure to remediate this vulnerability leaves the host device exposed to privilege escalation and potential unauthorized administrative access.