All CVEs
Vulnerability intelligence

CVE-2026-55115

CWE-918

A malicious actor with access to the network and low privileges could exploit a Server-Side Request Forgery (SSRF) in UniFi Protect Application to escalate privileges on the host device.

CVSS Score
9.9
Critical
EPSS — Exploit Probability
0.2%
Riskier than 14% of all CVEs
Exploitation
Not in CISA KEV
No federal exploitation record
Remediation
Patch available
Vendor fix published
NVD entry Vendor patch PoC / advisory

1 article across 1 outlet · first covered Jul 8, 2026 · latest Jul 8, 2026

Coverage timeline