Critical Vulnerability in UniFi Connect Application: CVE-2026-50746
A critical Improper Access Control vulnerability (CVE-2026-50746) with a CVSS score of 10 has been discovered in the UniFi Connect Application. This vulnerability allows a malicious actor with network access to execute Command Injection on the host device. The affected version is UniFi Connect Application < 3.4.20. Immediate patching is recommended to prevent potential exploitation.