CVE-2026-25112

Summary

A high-severity vulnerability in the deployment of Genetec RabbitMQ that allows a privilege escalation attack.

Affected Software

VendorProductVersion RangeStatus
Genetec Inc.Genetec RabbitMQ<3.13.7.19affected
Genetec Inc.Genetec RabbitMQ>=3.13.7.19unaffected
Genetec Inc.Genetec Mission Control<3.4.1.0affected
Genetec Inc.Genetec Mission Control>=3.4.1.0unaffected
Genetec Inc.Genetec Sipelia<2.11affected
Genetec Inc.Genetec Sipelia>=2.11unaffected
Genetec Inc.Genetec Industrial IoT<5.5.118.0affected
Genetec Inc.Genetec Industrial IoT>=5.5.118.0unaffected
Genetec Inc.Genetec Industrial IoT<6.0.196.0affected
Genetec Inc.Genetec Industrial IoT>=6.0.196.0unaffected
Genetec Inc.Genetec Airport Operational Manager<1.6affected
Genetec Inc.Genetec Airport Operational Manager>=1.6unaffected
Genetec Inc.Genetec Restricted Security Area<5.2.1affected
Genetec Inc.Genetec Restricted Security Area>=5.2.1unaffected
Genetec Inc.Genetec Inter-System Gateway<1.2affected
Genetec Inc.Genetec Inter-System Gateway>=1.2unaffected

Weaknesses

  • CWE-732: CWE-732 The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References