Quickfire Cyber Bulletin June 5, 2026
← Back

CVE-2026-33000

Low

Description

A malicious actor with access to the network and high privileges could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection.

Scores & Signals

CVSS 3.1 9.1 — CRITICAL
EPSS score 0.0006 (18.3th percentile)
CISA KEV No
Published 2026-05-22

Sources

External references

Risk scores are deterministic, based on public signals only. They are informational context, not a final verdict. Always consult vendor advisories before taking action.