cisa-kev
CISA KEVKeeps: CVE id, vendor, due date
CVE: CVE-2026-34908 Vendor/project: Ubiquiti Product: UniFi OS Known ransomware campaign use: Unknown Due date: 2026-06-26 CWE: CWE-284 Ubiquiti UniFi OS contains an improper access control vulnerability which could allow a malicious actor with access to the network to make unaut
CVE: CVE-2026-34909 Vendor/project: Ubiquiti Product: UniFi OS Known ransomware campaign use: Unknown Due date: 2026-06-26 CWE: CWE-22 Ubiquiti UniFi OS contains a path traversal vulnerability which could allow a malicious actor with access to the network to access files on the u
CVE: CVE-2026-34910 Vendor/project: Ubiquiti Product: UniFi OS Known ransomware campaign use: Unknown Due date: 2026-06-26 CWE: CWE-20 Ubiquiti UniFi OS contains an improper input validation vulnerability which could allow a malicious actor with access to the network to conduct c
CVE: CVE-2025-67038 Vendor/project: Lantronix Product: EDS5000 Known ransomware campaign use: Unknown Due date: 2026-06-26 CWE: CWE-78, CWE-94 Lantronix EDS5000 contains a code injection vulnerability that could allow attackers to inject arbitrary OS commands into the username pa