If You Have Ubiquiti UniFi Gear (and even if you don’t) You Need To Patch It Now

Users of Ubiquiti UniFi hardware along with those using the stand alone server product need to patch all the thing ASAP. Take what they brought out this morning for example:

  •  Tracked as CVE-2026-50746 this issue can allow command line injection attacks. T

But last Thursday, Ubiquiti patched another six (you read that right) vulnerabilities:

  • Ubiquiti patched CVE-2026-50747, CVE-2026-50748, CVE-2026-54400, CVE-2026-54402, CVE-2026-55115, and CVE-2026-55116. All of which require Ubiquiti users to be running a variety of UniFi applications.

In both cases, more info can be found here.

Why this matters is simple. Ubiquiti has been used as a jump off point for nation state actors doing their evil things since at least 2024. Evil things such as botnets for example. So if you are offered patches (which you should check for constantly over the next few days) inside your Ubiquiti console, install them ASAP.

Leave a Reply

Discover more from The IT Nerd

Subscribe now to keep reading and get access to the full archive.

Continue reading