CVE-2026-27768

Summary

SQL Injection affecting the Access Manager role.

Affected Software

VendorProductVersion RangeStatus
Genetec Inc.Genetec Security Center<=5.9.5.11affected
Genetec Inc.Genetec Security Center<=5.10.4.31affected
Genetec Inc.Genetec Security Center<=5.11.3.28affected
Genetec Inc.Genetec Security Center>=5.12.0.0 <5.12.2.17affected
Genetec Inc.Genetec Security Center>=5.12.2.17unaffected
Genetec Inc.Genetec Security Center>=5.13.0.0 <5.13.3.5affected
Genetec Inc.Genetec Security Center>=5.13.3.5unaffected

Weaknesses

  • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References