Lucene search
K

18 matches found

NVD
NVD
added 6 days ago6 views

CVE-2026-54401

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery SSRF to escalate privileges within such UniFi OS devices or instances...

7.7CVSS0.00201EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 6 days ago5 views

CVE-2026-54401

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery SSRF to escalate privileges within such UniFi OS devices or instances...

7.7CVSS5.8AI score0.00201EPSS
Exploits0References2
NVD
NVD
added 2026/06/12 4:17 a.m.15 views

CVE-2026-47370

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in certain devices running UniFi OS to execute a Command Injection within such UniFi OS devices or instances...

9.9CVSS0.00834EPSS
Exploits0References1
NVD
NVD
added 2026/06/12 4:17 a.m.13 views

CVE-2026-47369

A malicious actor with access to the network and low privileges could exploit an Improper Input Validation vulnerability found in certain devices running UniFi OS to escalate privileges within such UniFi OS devices or instances...

9.9CVSS0.00303EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/12 2:27 a.m.14 views

EUVD-2026-36378

Under certain network configurations, a malicious actor with access to network could exploit an Improper Access Control vulnerability found in certain devices running UniFi OS to make unauthorized changes to such UniFi OS devices...

8.1CVSS5.4AI score0.00264EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2026/06/09 12:0 a.m.6 views

VulnCheck KEV: CVE-2026-34909

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to access an underlying account...

10CVSS5.8AI score0.02269EPSS
In wildExploits2References3
RedhatCVE
RedhatCVE
added 2026/05/23 8:12 a.m.15 views

CVE-2026-34910

A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection...

10CVSS5.8AI score0.78555EPSS
Exploits2References1
NVD
NVD
added 2026/05/22 2:16 a.m.38 views

CVE-2026-34910

A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection...

10CVSS0.78555EPSS
Exploits2References3
NVD
NVD
added 2026/05/22 2:16 a.m.39 views

CVE-2026-34908

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS devices to make unauthorized changes to the system...

10CVSS0.02452EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2026/05/22 12:43 a.m.21 views

CVE-2026-34908

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS devices to make unauthorized changes to the system...

10CVSS5.7AI score0.02452EPSS
Exploits2References1
ATTACKERKB
ATTACKERKB
added 2026/05/22 12:43 a.m.9 views

CVE-2026-34908

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi OS devices to make unauthorized changes to the system...

10CVSS5.7AI score0.02452EPSS
Exploits2References2
EUVD
EUVD
added 2026/05/22 12:43 a.m.14 views

EUVD-2026-31384

A malicious actor with access to the network could exploit a Path Traversal vulnerability found in UniFi OS devices to access files on the underlying system that could be manipulated to access an underlying account...

10CVSS5.7AI score0.02269EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2026/05/22 12:43 a.m.12 views

CVE-2026-34910

A malicious actor with access to the network could exploit an Improper Input Validation vulnerability found in UniFi OS devices to execute a Command Injection...

10CVSS5.8AI score0.78555EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.15 views

PT-2026-42656

Name of the Vulnerable Software and Affected Versions UniFi OS affected versions not specified Description An improper input validation issue in UniFi OS allows a malicious actor with network access and high privileges to execute a command injection. Approximately 100,000 UniFi endpoints are...

9.1CVSS5.9AI score0.01248EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.18 views

PT-2026-42659

Name of the Vulnerable Software and Affected Versions UniFi OS affected versions not specified Description An improper input validation issue exists in UniFi OS devices. A remote actor with network access can exploit this flaw to perform a command injection, which allows the execution of arbitrar...

10CVSS6.2AI score0.78555EPSS
Exploits2References52
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-3119

Malicious code in bioql PyPI...

5.9CVSS6AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 11:41 a.m.15 views

CVE-2025-23091

An Improper Certificate Validation on UniFi OS devices, with Identity Enterprise configured, could allow a malicious actor to execute a man-in-the-middle MitM attack during application update...

5.9CVSS7.1AI score0.00193EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/01 6:53 a.m.5 views

CVE-2025-23091

An Improper Certificate Validation on UniFi OS devices, with Identity Enterprise configured, could allow a malicious actor to execute a man-in-the-middle MitM attack during application update...

5.9CVSS5.8AI score0.00193EPSS
Exploits0References1
Rows per page
Query Builder