Lucene search
+L

23768 matches found

ATTACKERKB
ATTACKERKB
added 2026/07/02 2:49 p.m.6 views

CVE-2026-54401

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery SSRF to escalate privileges within such UniFi OS devices or instances...

7.7CVSS5.8AI score0.00217EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/02 2:49 p.m.15 views

EUVD-2026-41392

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery SSRF to escalate privileges within such UniFi OS devices or instances...

7.7CVSS5.8AI score0.00217EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/02 2:49 p.m.36 views

CVE-2026-54401

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery SSRF to escalate privileges within such UniFi OS devices or instances...

7.7CVSS0.00217EPSS
Exploits0References1
CVE
CVE
added 2026/07/02 2:49 p.m.14 views

CVE-2026-50747

The CVE-2026-50747 entry concerns the UniFi Talk Application. It describes an authenticated SQL Injection vulnerability that could be leveraged by an attacker with network access and low privileges to escalate privileges on the host device. The issue is characterized as high-severity (CVSS v3.1 b...

9.9CVSS5.8AI score0.00274EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/07/02 2:49 p.m.28 views

CVE-2026-54400

Technical details about CVE-2026-54400 are not publicly available in the provided documents. Monitor for updates from vendors for affected UniFi Access Application components and mitigations.

9.1CVSS5.8AI score0.00291EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/07/02 2:49 p.m.9 views

EUVD-2026-41387

A malicious actor with access to the network and low privileges could exploit a series of authenticated SQL Injection vulnerabilities found in UniFi OS to escalate privileges within such UniFi OS devices or instances...

8.8CVSS5.8AI score0.00249EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/02 2:49 p.m.34 views

CVE-2026-54406

A malicious actor with access to the network and high privileges could exploit a Path Traversal vulnerability found in self-hosted instances of UniFi Network Application to escalate write permission on the host device...

8.7CVSS0.00325EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/02 2:49 p.m.35 views

CVE-2026-54408

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Protect Application to bypass authentication for data streaming...

8.6CVSS0.0028EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/02 2:49 p.m.7 views

EUVD-2026-41384

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UniFi Access Application to execute a Command Injection on the host device...

9.9CVSS5.8AI score0.00889EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/02 2:49 p.m.40 views

CVE-2026-54400

A malicious actor with access to the network and high privileges could exploit an Improper Access Control vulnerability found in UniFi Access Application to escalate privileges on the host device...

9.1CVSS0.00291EPSS
Exploits0References1
CVE
CVE
added 2026/07/02 2:49 p.m.43 views

CVE-2026-54406

CVE-2026-54406 : A Path Traversal vulnerability affects self-hosted instances of UniFi Network Application. The issue allows a malicious actor with network access and high privileges to escalate write permissions on the host device. Affected component: path traversal in the application’s handling...

8.7CVSS5.8AI score0.00325EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/07/02 2:49 p.m.8 views

CVE-2026-54404

A malicious actor with access to the network and low privileges could exploit a series of authenticated SQL Injection vulnerabilities found in UniFi OS to escalate privileges within such UniFi OS devices or instances...

8.8CVSS5.8AI score0.00249EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/07/02 2:49 p.m.7 views

CVE-2026-50748

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UniFi Access Application to execute a Command Injection on the host device...

9.9CVSS5.8AI score0.00889EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/02 2:49 p.m.35 views

CVE-2026-50748

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in UniFi Access Application to execute a Command Injection on the host device...

9.9CVSS0.00889EPSS
Exploits0References1
EUVD
EUVD
added 2026/07/02 2:49 p.m.7 views

EUVD-2026-41386

A malicious actor with access to the network and high privileges could exploit an Improper Access Control vulnerability found in UniFi Access Application to escalate privileges on the host device...

9.1CVSS5.8AI score0.00291EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/02 2:49 p.m.6 views

CVE-2026-54400

A malicious actor with access to the network and high privileges could exploit an Improper Access Control vulnerability found in UniFi Access Application to escalate privileges on the host device...

9.1CVSS5.8AI score0.00291EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/07/02 2:49 p.m.16 views

CVE-2026-54409

A malicious actor with access to the network and under certain conditions could exploit an Improper Initialization vulnerability found in UniFi Protect Application to bypass authentication in UniFi Protect Cameras...

7.5CVSS5.8AI score0.00254EPSS
Exploits0References2
EUVD
EUVD
added 2026/07/02 2:49 p.m.8 views

EUVD-2026-41389

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Connect Application to execute a Command Injection on the host device...

10CVSS5.8AI score0.00922EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.10 views

PT-2026-55238

Name of the Vulnerable Software and Affected Versions UniFi OS affected versions not specified Description An improper input validation issue allows a malicious actor with network access and low privileges to perform command injection on the host device. Command injection is a flaw that allows an...

9.9CVSS6.2AI score0.00872EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.11 views

PT-2026-55233

Name of the Vulnerable Software and Affected Versions UniFi Access Application affected versions not specified Description An improper input validation issue allows a malicious actor with network access and low privileges to perform command injection on the host device. Recommendations At the...

9.9CVSS6AI score0.00889EPSS
Exploits0References6
Rows per page
Query Builder