oM noM Security Feeds cve
vulnerability context

CVE-2026-56841

CVSS 8.8 HIGHEPSS 15%CWE-89OTX 2 pulses

A malicious actor with access to the network and low privileges could exploit an authenticated SQL Injection vulnerability found in UniFi Protect Application to escalate privileges on the host device.

Published 2026-07-02 · last modified 2026-07-06

details

CISA KEV status
Not in catalog
CVSS v3
8.8 / HIGH
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
15% percentile (score 0.0024)
CWE
CWE-89
OTX pulses
2 total, 0 recent

source mentions 2

source consensus

  • Bluesky:@cyberhub.blog
  • Bluesky
Want the 3-bullet summary of CVE-2026-56841, plus webhook alerts when KEV is updated? Pro is $10/mo.