CVE-2026-22565

CVE-2026-22565

Vendor Ubiquiti Inc
Product UniFi Play PowerAmp
Weakness CWE-20 · Input validation
Published April 13, 2026
Last update April 14, 2026

CVSS base score

What the vulnerability does

01Description

An Improper Input Validation vulnerability could allow a malicious actor with access to the UniFi Play network to cause the device to stop responding.
 Affected Products: UniFi Play PowerAmp (Version 1.0.35 and earlier)
 UniFi Play Audio Port  (Version 1.0.24 and earlier)
 Mitigation: Update UniFi Play PowerAmp to Version 1.0.38 or later
 Update UniFi Play Audio Port  to Version 1.1.9 or later

Key dates

02Disclosure timeline

April 13, 2026 CVE published
April 14, 2026 Record updated