Vulnerabilities (CVE)

Filtered by vendor Ui Subscribe
Filtered by product Unifi Talk Application
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2026-50747 1 Ui 1 Unifi Talk Application 2026-07-09 N/A 9.9 CRITICAL
A malicious actor with access to the network and low privileges could exploit a series of authenticated SQL Injection vulnerabilities found in UniFi Talk Application to escalate privileges on the host device.
CVE-2026-55113 1 Ui 1 Unifi Talk Application 2026-07-09 N/A 7.5 HIGH
A malicious actor with access to the network could exploit a Server-Side Request Forgery (SSRF) vulnerability found in UniFi Talk Application to execute a Denial of Service (DoS) attack and bypass authentication in certain UniFi Talk API endpoints.
CVE-2026-55119 1 Ui 1 Unifi Talk Application 2026-07-09 N/A 8.1 HIGH
A malicious actor with access to the network and low privileges could exploit an Improper Access Control vulnerability found in UniFi Talk Application to escalate privileges within the UniFi Talk Application.