CVE 7.5 HIGH

CVE-2026-22565_CVE-2026-22565

April 14, 2026 invoker category_cve
7.5 / 10
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Description

An Improper Input Validation vulnerability could allow a malicious actor with access to the UniFi Play network to cause the device to stop responding.


Affected Products:
UniFi Play PowerAmp (Version 1.0.35 and earlier)

UniFi Play Audio Port  (Version 1.0.24 and earlier)


Mitigation:
Update UniFi Play PowerAmp to Version 1.0.38 or later

Update UniFi Play Audio Port  to Version 1.1.9 or later

Basic Information

ID CVE-2026-22565
Source hackerone
Published Apr 13, 2026 at 21:28
Modified Apr 14, 2026 at 20:18

Affected Product

Vendor Ubiquiti Inc
Product UniFi Play PowerAmp
Affected Versions Ubiquiti Inc UniFi Play PowerAmp 0
Ubiquiti Inc UniFi Play Audio Port 0

CWE Classification

CWE-20

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.