Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

#f2b06212-cb4b-41a4-9501-fa2e367495b8

Security Advisories

Reported CVEsVendorsProductsReports
3Vulnerabilities found
CVE-2025-2928
Assigner-Genetec Inc.
ShareView Details
Assigner-Genetec Inc.
CVSS Score-7.2||HIGH
EPSS-0.04% / 10.79%
||
7 Day CHG~0.00%
Published-29 Jul, 2025 | 17:44
Updated-05 Aug, 2025 | 03:56
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

SQL Injection affecting the Archiver role.

Action-Not Available
Vendor-Genetec Inc.
Product-Genetec Security Center
CWE ID-CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVE-2024-7059
Assigner-Genetec Inc.
ShareView Details
Assigner-Genetec Inc.
CVSS Score-8.9||HIGH
EPSS-0.45% / 62.50%
||
7 Day CHG+0.04%
Published-05 Nov, 2024 | 13:13
Updated-09 Nov, 2024 | 23:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A high-severity vulnerability that can lead to arbitrary code execution on the system hosting the Web SDK role was found in the Genetec Security Center product line.

Action-Not Available
Vendor-Genetec Inc.genetec
Product-Genetec Security Centersecurity_center
CWE ID-CWE-470
Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
CVE-2023-1522
Assigner-Genetec Inc.
ShareView Details
Assigner-Genetec Inc.
CVSS Score-8.8||HIGH
EPSS-0.28% / 51.29%
||
7 Day CHG~0.00%
Published-05 Apr, 2023 | 18:51
Updated-12 Feb, 2025 | 16:15
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

SQL Injection in the Hardware Inventory report of Security Center 5.11.2.

Action-Not Available
Vendor-genetecGenetec Inc.
Product-security_centerGenetec Security Center
CWE ID-CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')