CVE-2025-2928

Summary

SQL Injection affecting the Archiver role.

Affected Software

VendorProductVersion RangeStatus
Genetec Inc.Genetec Security Center>=5.9.0.0 <5.9.5.9affected
Genetec Inc.Genetec Security Center>=5.9.5.9unaffected
Genetec Inc.Genetec Security Center>=5.10.0.0 <5.10.4.28affected
Genetec Inc.Genetec Security Center>=5.10.4.28unaffected
Genetec Inc.Genetec Security Center>=5.11.0.0 <5.11.3.19affected
Genetec Inc.Genetec Security Center>=5.11.3.19unaffected
Genetec Inc.Genetec Security Center>=5.12.0.0 <5.12.2.6affected
Genetec Inc.Genetec Security Center>=5.12.2.6unaffected
Genetec Inc.Genetec Security Center>=5.13.0.0 <5.13.1.1affected
Genetec Inc.Genetec Security Center>=5.13.1.1unaffected

Weaknesses

  • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References