CVE-2026-54406
Ubiquiti · UniFi Network Application
A path traversal vulnerability in self-hosted Ubiquiti UniFi Network Application instances allows high-privileged authenticated attackers to escalate write permissions on the underlying host device.
Executive summary
A path traversal vulnerability in self-hosted Ubiquiti UniFi Network Application instances allows authenticated attackers to gain elevated write permissions on the host operating system.
Vulnerability
The vulnerability is a path traversal flaw that permits an authenticated attacker with high privileges to write arbitrary files to the host filesystem, potentially leading to full system compromise.
Business impact
With a CVSS score of 8.7, this vulnerability poses a critical threat to the integrity and availability of the host server. A successful exploit could allow an attacker to overwrite configuration files or inject malicious binaries, leading to complete system takeover, unauthorized data access, and significant operational downtime.
Remediation
Immediate Action: Update the self-hosted UniFi Network Application to the latest version provided by the vendor.
Proactive Monitoring: Implement file integrity monitoring (FIM) on the host server to detect unauthorized modifications to critical system directories.
Compensating Controls: Ensure the application is running with the principle of least privilege, specifically by running the service under a dedicated, non-privileged user account to limit the impact of a potential breakout.
Exploitation status
Public Exploit Available: false
Analyst recommendation
The ability to write to the host filesystem from an application layer is a severe security failure. Administrators must prioritize updating their self-hosted instances and verify that the service is isolated from sensitive host files through robust containerization or restricted user permissions.