CVE-2026-56842
Received Received - Intake

Incorrect Authorization in UniFi Network Application

Vulnerability report for CVE-2026-56842, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-02

Last updated on: 2026-07-02

Assigner: HackerOne

Description

A malicious actor with access to the network and under certain conditions could exploit an Incorrect Authorization vulnerability found in UniFi Network Application to persist privileges within UniFi Network Application after such access had been removed.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-02
Last Modified
2026-07-02
Generated
2026-07-02
AI Q&A
2026-07-02
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
ubiquiti unifi_network_application *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-863 The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability is an Incorrect Authorization issue in the UniFi Network Application. It allows a malicious actor who already has network access, under certain conditions, to exploit the flaw to maintain elevated privileges within the application even after their original access has been removed.

Impact Analysis

The impact of this vulnerability is significant because it enables an attacker to persist their elevated privileges within the UniFi Network Application. This persistence can lead to unauthorized control over network configurations and data, potentially resulting in confidentiality, integrity, and availability breaches.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-56842. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart