Metrics
Affected Vendors & Products
Thu, 09 Jul 2026 01:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | UniFi OS Privilege Escalation via Authenticated SQL Injection |
Wed, 08 Jul 2026 12:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated SQL Injection Enabling Privilege Escalation in UniFi OS |
Wed, 08 Jul 2026 00:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated SQL Injection Enabling Privilege Escalation in UniFi OS |
Tue, 07 Jul 2026 08:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated SQL Injection Privilege Escalation in UniFi OS |
Mon, 06 Jul 2026 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated SQL Injection Privilege Escalation in UniFi OS |
Mon, 06 Jul 2026 04:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Privilege Escalation via Authenticated SQL Injection in UniFi OS Devices |
Sun, 05 Jul 2026 18:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Privilege Escalation via Authenticated SQL Injection in UniFi OS Devices |
Sun, 05 Jul 2026 12:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated SQL Injection in UniFi OS Enabling Privilege Escalation |
Sun, 05 Jul 2026 02:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated SQL Injection in UniFi OS Enabling Privilege Escalation |
Sat, 04 Jul 2026 21:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated SQL Injection Vulnerability in UniFi OS Enables Privilege Escalation |
Sat, 04 Jul 2026 10:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Authenticated SQL Injection Vulnerability in UniFi OS Enables Privilege Escalation |
Fri, 03 Jul 2026 10:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Auth‑Based SQL Injection in UniFi OS Allows Privilege Escalation |
Thu, 02 Jul 2026 23:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Auth‑Based SQL Injection in UniFi OS Allows Privilege Escalation |
Thu, 02 Jul 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Thu, 02 Jul 2026 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A malicious actor with access to the network and low privileges could exploit a series of authenticated SQL Injection vulnerabilities found in UniFi OS to escalate privileges within such UniFi OS devices or instances. | |
| Weaknesses | CWE-89 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: hackerone
Published: 2026-07-02T14:49:16.757Z
Updated: 2026-07-03T03:56:09.490Z
Reserved: 2026-06-13T15:00:00.605Z
Link: CVE-2026-54404
Updated: 2026-07-02T15:41:38.900Z
No data.
No data.