> TritonInfoSec News
Home / Jun 26, 2026 / Story
0
#6 BleepingComputer general June 24, 2026 at 14:35 UTC

CISA warns of max severity Ubiquiti flaws exploited in attacks

By Bill Toulas

AI Summary

CISA is actively warning of exploitation against two device families: Ubiquiti UniFi OS systems and Lantronix serial-to-ethernet servers, with flaws rated at maximum severity allowing remote unauthenticated attackers to make system changes, access underlying accounts, and inject arbitrary commands. The Ubiquiti vulnerabilities are particularly significant given the wide deployment of UniFi equipment across enterprise and SMB networks. Organizations should audit internet-facing Ubiquiti and Lantronix devices and apply available patches immediately.

Read full article → https://www.bleepingcomputer.com/news/security/cis…

Relevance score: 81.0/100

# More from June 26

  1. 1
    Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access The Hacker News
  2. 2
    Amadey, StealC malware operations disrupted in Operation Endgame action BleepingComputer
  3. 3
    In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw Dark Reading
  4. 4
    New Gaslight macOS Malware Uses Prompt Injection to Disrupt AI-Assisted Analysis The Hacker News
  5. 5
    CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited The Hacker News
  6. 7
    Gamaredon in 2025: Leveraging tunnels, workers, dead drops, and new alliances WeLiveSecurity (ESET)
  7. 8
    BeyondTrust, LastPass Impacted by Klue-Salesforce Incident SecurityWeek
  8. 9
    Exploitable CI/CD Vulnerabilities Expose Millions of Repositories to Hijacking SecurityWeek
  9. 10
    Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability The Hacker News