Unrated severityNVD Advisory· Published Jan 5, 2026· Updated Jan 5, 2026
CVE-2026-21633
CVE-2026-21633
Description
A malicious actor with access to the adjacent network could obtain unauthorized access to a UniFi Protect Camera by exploiting a discovery protocol vulnerability in the Unifi Protect Application (Version 6.1.79 and earlier).
Affected Products:
UniFi Protect Application (Version 6.1.79 and earlier).
Mitigation:
Update your UniFi Protect Application to Version 6.2.72 or later.
Affected products
1- Ubiquiti Inc/UniFi Protect Applicationv5Range: 6.1.79
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
2- ZDI-26-127: (Pwn2Own) Ubiquiti Networks AI Pro Cleartext Transmission Information Disclosure VulnerabilityZero Day Initiative · Feb 25, 2026
- ZDI-26-126: (Pwn2Own) Ubiquiti Networks AI Pro Discovery Protocol Missing Encryption Protocol Downgrade VulnerabilityZero Day Initiative · Feb 25, 2026