CVE-2026-50747
Ubiquiti · UniFi Talk Application
Authenticated SQL injection vulnerabilities in the UniFi Talk Application allow low-privileged network attackers to escalate privileges on the host device.
Executive summary
A critical SQL injection vulnerability in the Ubiquiti UniFi Talk Application permits authenticated attackers to escalate privileges, potentially leading to full host compromise.
Vulnerability
This vulnerability consists of a series of SQL injection flaws within the application. An attacker with low-privileged network access can leverage these flaws to execute arbitrary database queries and escalate their privileges on the underlying host.
Business impact
Successful exploitation of this flaw allows an attacker to bypass security controls and gain elevated administrative rights. Given the CVSS score of 9.9, the impact to confidentiality, integrity, and availability is severe, potentially leading to complete unauthorized control over the UniFi Talk environment and sensitive communication data.
Remediation
Immediate Action: Apply the latest security update provided by Ubiquiti for the UniFi Talk Application immediately.
Proactive Monitoring: Review application and database access logs for unusual query patterns or unexpected privilege escalation events.
Compensating Controls: Implement strict network segmentation to limit access to the UniFi Talk interface to authorized personnel only, reducing the attack surface.
Exploitation status
Public Exploit Available: No
Analyst recommendation
The severity of this SQL injection vulnerability necessitates immediate attention. Administrators must prioritize updating the UniFi Talk Application to the latest version to patch the underlying code flaws. Failure to remediate this vulnerability leaves the host device exposed to privilege escalation and potential unauthorized administrative access.