26/02/2026

ZDI-26-128: (Pwn2Own) Ubiquiti Networks AI Pro Uncaught Exception Denial-of-Service Vulnerability

This vulnerability allows network-adjacent attackers to create a denial-of-service condition on affected installations of Ubiquiti Networks AI Pro. Authentication is not required to exploit this vulnerability. The ZDI has assigned a CVSS rating of 6.5. The following CVEs are assigned: CVE-2026-21634.

Comments are closed.

You may also like

ZDI-25-1001: Microsoft Windows Common Log File System Out-Of-Bounds Read Information Disclosure Vulnerability

ZDI-25-983: evernote-mcp-server openBrowser Command Injection Privilege Escalation Vulnerability