A critical defect in Ubiquiti's UniFi Network Application poses a significant risk of account takeover for users, as it allows attackers to access and manipulate files. The vulnerability, identified as CVE-2026-22557, is a path-traversal flaw that affects the software used to manage UniFi networking devices, including access points, gateways, and switches. Ubiquiti has released patches for the defect, which was disclosed in a recent security advisory1. The vulnerability expands the active attack surface, making it essential for users to prioritize patching based on their exposure and exploitation evidence. This vulnerability has the potential to be exploited by attackers to gain unauthorized access to user accounts, highlighting the need for prompt action to mitigate the risk. The disclosure of CVE-2026-22557 serves as a reminder for practitioners to stay vigilant and take proactive measures to protect their networks from potential threats, so what matters most is the swift application of patches to prevent account takeover.