Improper Access Control in UniFi Protect Application
CVE-2026-54407
8.6HIGH
What is CVE-2026-54407?
The UniFi Protect Application is susceptible to an improper access control vulnerability, allowing a malicious actor with network access to bypass authentication measures on specific API endpoints. This flaw could enable unauthorized access and manipulation of sensitive data within the application, posing significant security risks to users.
Affected Version(s)
UniFi Protect Application 0 < 7.1.83
