CVE-2026-55115
- EPSS 0.23%
- Veröffentlicht 02.07.2026 14:50:48
- Zuletzt bearbeitet 07.07.2026 16:36:26
A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (SSRF) in UniFi Protect Application to escalate privileges on the host device.
CVE-2026-56841
- EPSS 0.25%
- Veröffentlicht 02.07.2026 14:50:48
- Zuletzt bearbeitet 06.07.2026 19:32:47
A malicious actor with access to the network and low privileges could exploit an authenticated SQL Injection vulnerability found in UniFi Protect Application to escalate privileges on the host device.
CVE-2026-54407
- EPSS 0.29%
- Veröffentlicht 02.07.2026 14:49:16
- Zuletzt bearbeitet 06.07.2026 19:32:10
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Protect Application to bypass authentication in certain UniFi Protect Application API endpoints.
CVE-2026-54408
- EPSS 0.28%
- Veröffentlicht 02.07.2026 14:49:16
- Zuletzt bearbeitet 07.07.2026 16:33:15
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Protect Application to bypass authentication for data streaming.
CVE-2026-54409
- EPSS 0.25%
- Veröffentlicht 02.07.2026 14:49:16
- Zuletzt bearbeitet 07.07.2026 16:34:31
A malicious actor with access to the network and under certain conditions could exploit an Improper Initialization vulnerability found in UniFi Protect Application to bypass authentication in UniFi Protect Cameras.
CVE-2026-21633
- EPSS 0.4%
- Veröffentlicht 05.01.2026 16:47:38
- Zuletzt bearbeitet 30.01.2026 01:23:38
A malicious actor with access to the adjacent network could obtain unauthorized access to a UniFi Protect Camera by exploiting a discovery protocol vulnerability in the Unifi Protect Application (Version 6.1.79 and earlier). Affected Products...
CVE-2026-21634
- EPSS 0.35%
- Veröffentlicht 05.01.2026 16:47:38
- Zuletzt bearbeitet 30.01.2026 01:23:13
A malicious actor with access to the adjacent network could overflow the UniFi Protect Application (Version 6.1.79 and earlier) discovery protocol causing it to restart. Affected Products: UniFi Protect Application (Version 6.1.79 and earlier)....
CVE-2021-22957
- EPSS 0.88%
- Veröffentlicht 24.11.2021 19:15:07
- Zuletzt bearbeitet 21.11.2024 05:51:01
A Cross-Origin Resource Sharing (CORS) vulnerability found in UniFi Protect application Version 1.19.2 and earlier allows a malicious actor who has convinced a privileged user to access a URL with malicious code to take over said user’s account.This ...
CVE-2021-22943
- EPSS 0.41%
- Veröffentlicht 31.08.2021 17:15:07
- Zuletzt bearbeitet 21.11.2024 05:50:59
A vulnerability found in UniFi Protect application V1.18.1 and earlier permits a malicious actor who has already gained access to a network to subsequently control the Protect camera(s) assigned to said network. This vulnerability is fixed in UniFi P...
- EPSS 0.42%
- Veröffentlicht 31.08.2021 17:15:07
- Zuletzt bearbeitet 21.11.2024 05:50:59
A vulnerability found in UniFi Protect application V1.18.1 and earlier allows a malicious actor with a view-only role and network access to gain the same privileges as the owner of the UniFi Protect application. This vulnerability is fixed in UniFi P...