CVE Catalog

CVE-2026-54408

HighCVSS 8.6
Published: Updated: Translated: NVD NIST

Summary

A vulnerability in the UniFi Protect Application allows an attacker with network access to bypass authentication for data streaming due to improper access control.

Risk Assessment

The risk involves unauthorized access to data streams, potentially leading to leakage of sensitive video information or privacy breaches.

Recommendation

It is recommended to immediately update the UniFi Protect Application to the latest patched version and restrict network access to the system.

Original NVD description (English source)

A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Protect Application to bypass authentication for data streaming.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS