Under certain network configurations, a malicious actor with access to network could exploit an Improper Access Control vulnerability found in certain devices running UniFi OS to make unauthorized changes to such UniFi OS devices.
Exploit
CVE-2026-48610
NVD
Refer to CVE-2026-48610 NVD advisory