Lucene search
+L

23766 matches found

CVE
CVE
added 2026/07/02 2:50 p.m.42 views

CVE-2026-56842

CVE-2026-56842 : A vulnerability in UniFi Network Application allows a malicious actor with network access to persist privileges after the access is removed, due to an Incorrect Authorization flaw. The CVSS v3.1 base score is 7.5 (HIGH) with vector AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H. Affected co...

7.5CVSS5.7AI score0.00214EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/07/02 2:50 p.m.56 views

CVE-2026-55114

The CVE-2026-55114 entry concerns UniFi Network Application. Affected component: the UniFi Network Application itself, with an Improper Access Control vulnerability that allows a user with network access and low privileges to escalate privileges within the application. The CVSSv3.1 vector (AV:N/A...

8.8CVSS5.8AI score0.00232EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/07/02 2:50 p.m.16 views

CVE-2026-56841

CVE-2026-56841 describes an authenticated SQL Injection vulnerability in UniFi Protect Application. A network-accessible attacker with low privileges can exploit this to escalate privileges on the host device. Affected software: UniFi Protect Application (specific versions not stated in the provi...

8.8CVSS5.8AI score0.00249EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/07/02 2:50 p.m.7 views

CVE-2026-55112

A malicious actor with access to the network and low privileges and under certain conditions could exploit an Improper Access Control vulnerability found in UniFi OS with UniFi Protect Application to escalate privileges on the host device...

7.5CVSS5.8AI score0.00198EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/02 2:50 p.m.35 views

CVE-2026-55112

A malicious actor with access to the network and low privileges and under certain conditions could exploit an Improper Access Control vulnerability found in UniFi OS with UniFi Protect Application to escalate privileges on the host device...

7.5CVSS0.00198EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/02 2:50 p.m.19 views

EUVD-2026-41397

A malicious actor with access to the network,low privileges and under certain conditions could exploit an Improper Access Control vulnerability found in UniFi Network Application to escalate privileges within the UniFi Network Application...

8.3CVSS5.8AI score0.00195EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/02 2:50 p.m.5 views

EUVD-2026-41398

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery SSRF in UniFi Protect Application to escalate privileges on the host device...

9.9CVSS5.8AI score0.00232EPSS
Exploits0References1
CVE
CVE
added 2026/07/02 2:50 p.m.36 views

CVE-2026-55118

CVE-2026-55118 concerns UniFi Network Application with an Improper Access Control flaw that could allow a malicious actor with network access and low privileges to escalate privileges within the UniFi Network Application. The connected records provide CVSS 3.1 details (AV:N/AC:L/PR:L/UI:N/S:U/C:L...

8.3CVSS5.8AI score0.00195EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/07/02 2:50 p.m.8 views

EUVD-2026-41396

A malicious actor with access to the network and low privileges and under certain conditions could exploit an Improper Access Control vulnerability found in UniFi OS with UniFi Protect Application to escalate privileges on the host device...

7.5CVSS5.8AI score0.00198EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/02 2:50 p.m.8 views

EUVD-2026-41400

A malicious actor with access to the network and under certain network configurations could exploit an Improper Access Control vulnerability found in certain devices running UniFi OS to make unauthorized changes to such UniFi OS devices...

9CVSS5.8AI score0.00229EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/02 2:50 p.m.36 views

CVE-2026-55117

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi Access Application to access files on the host device...

8.6CVSS0.00382EPSS
Exploits0References1
CVE
CVE
added 2026/07/02 2:50 p.m.72 views

CVE-2026-55116

CVE-2026-55116 affects UniFi OS devices. The issue is an Improper Access Control vulnerability that could allow a network-attached attacker, under certain configurations, to make unauthorized changes to UniFi OS devices. The CVSS 3.1 vector indicates Network access, High attack complexity, No pri...

9.8CVSS5.8AI score0.00229EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/07/02 2:50 p.m.38 views

CVE-2026-55115

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery SSRF in UniFi Protect Application to escalate privileges on the host device...

9.9CVSS0.00232EPSS
Exploits0References1
CVE
CVE
added 2026/07/02 2:50 p.m.20 views

CVE-2026-55117

The CVE-2026-55117 entry describes a path traversal vulnerability in UniFi Access Application. The vulnerability could allow an attacker with network access to access files on the host device via the affected component, exposing potentially sensitive information. Documented details do not specify...

8.6CVSS5.8AI score0.00382EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/07/02 2:50 p.m.7 views

CVE-2026-55115

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery SSRF in UniFi Protect Application to escalate privileges on the host device...

9.9CVSS5.8AI score0.00232EPSS
Exploits0References2
CVE
CVE
added 2026/07/02 2:50 p.m.42 views

CVE-2026-55115

The CVE-2026-55115 entry describes a Server-Side Request Forgery (SSRF) in the UniFi Protect Application that could allow a low-privilege, network-accessible attacker to escalate privileges on the host. The available sources state the affected component as the UniFi Protect Application and identi...

9.9CVSS5.8AI score0.00232EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/07/02 2:49 p.m.6 views

CVE-2026-54402

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UniFi OS to execute a Command Injection on the host device...

9.9CVSS5.8AI score0.00872EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/02 2:49 p.m.7 views

EUVD-2026-41393

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi Protect Floodlight devices to access files on the UniFi Protect Floodlight...

7.5CVSS5.8AI score0.00335EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/02 2:49 p.m.9 views

EUVD-2026-41391

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UniFi OS to execute a Command Injection on the host device...

9.9CVSS5.8AI score0.00872EPSS
Exploits0References1
CVE
CVE
added 2026/07/02 2:49 p.m.14 views

CVE-2026-54402

CVE-2026-54402 describes an Improper Input Validation flaw in UniFi OS enabling a Command Injection on the host when a malicious actor with network access and low privileges interacts with the system. The CVSS 3.1 vector (AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H) yields a base score of 9.9 (CRITICAL),...

9.9CVSS5.8AI score0.00872EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder