Loading market data...
← Back to CVE feed

CVE-2026-55110

HIGH CVSS 7.5 View on NVD ↗

Description

A malicious actor who lures an authenticated user to a malicious page could exploit a Cross-Origin Resource Sharing (CORS) misconfiguration found in UniFi OS to trigger actions in UniFi OS using that user's session.

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
Published: Jul 02, 2026 15:17 UTC Modified: Jul 02, 2026 16:54 UTC