CVE-2026-22558

High CVSS: 7.7

An Authenticated NoSQL Injection vulnerability found in UniFi Network Application could allow a malicious actor with authenticated access to the network to escalate privileges.

Vendor

Product

CWE

CWE-943

Yayın Tarihi

2026-03-19 15:16:23

Güncelleme

2026-03-20 13:39:46

Source Identifier

support@hackerone.com

KEV Date Added

Kategoriler

CWE-943 HIGH 2026

Referanslar

https://community.ui.com/releases/Security-Advisory-Bulletin-062-062/c29719c0-405e-4d4a-8f26-e343e99f931b