Primary

Context

Ubiquiti UniFi Improper Access Control Vulnerability Allowing Unauthorized System Changes

Vulnerability

A vulnerability in Ubiquiti UniFi Play products, specifically in the PowerAmp version 1.0.35 and earlier and the Audio Port version 1.0.24 and earlier, allows malicious actors with access to the UniFi Play network to bypass access controls and enable SSH. This could lead to unauthorized changes on the system.

Impact

Exploitation of this vulnerability could result in unauthorized system modifications, potentially allowing for further exploitation or disruption of services.

Remediation

Users are advised to update UniFi Play PowerAmp to version 1.0.38 or later and UniFi Play Audio Port to version 1.1.9 or later.

Added: Apr 13, 2026, 10:45 PM

Updated: Apr 13, 2026, 10:45 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

5.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

0.0

relevance

5.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Ubiquiti UniFi Improper Access Control Vulnerability Allowing Unauthorized System Changes

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating