Skip to main content

Uid Enterprise Agent

1 CVEs product

Monthly

CVE-2026-47367 CRITICAL PATCH Act Now

Command injection in Ubiquiti UID Enterprise Agent allows a low-privileged attacker with network access to execute arbitrary commands on the host device by abusing improper input validation. The CVSS 9.9 score reflects a scope change with high confidentiality, integrity, and availability impact, and no public exploit identified at time of analysis. Defenders should treat this as a high-priority patch item given the low attack complexity and minimal privilege requirement.

Command Injection Uid Enterprise Agent
NVD VulDB
CVSS 3.1
9.9
EPSS
0.2%
EPSS 0% CVSS 9.9
CRITICAL PATCH Act Now

Command injection in Ubiquiti UID Enterprise Agent allows a low-privileged attacker with network access to execute arbitrary commands on the host device by abusing improper input validation. The CVSS 9.9 score reflects a scope change with high confidentiality, integrity, and availability impact, and no public exploit identified at time of analysis. Defenders should treat this as a high-priority patch item given the low attack complexity and minimal privilege requirement.

Command Injection Uid Enterprise Agent
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy