exploitDog

GHSA-86qf-w767-gpvp

Опубликовано: 19 мар. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 7.7

Описание

An Authenticated NoSQL Injection vulnerability found in UniFi Network Application could allow a malicious actor with authenticated access to the network to escalate privileges.

An Authenticated NoSQL Injection vulnerability found in UniFi Network Application could allow a malicious actor with authenticated access to the network to escalate privileges.

Ссылки

EPSS

Процентиль: 2%

0.00013

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-943

Связанные уязвимости

CVE-2026-22558

CVSS3: 7.7

nvd

26 дней назад

An Authenticated NoSQL Injection vulnerability found in UniFi Network Application could allow a malicious actor with authenticated access to the network to escalate privileges.

EPSS

Процентиль: 2%

0.00013

Низкий

7.7 High

CVSS3

CVE ID

Дефекты

CWE-943