The CVE-2026-55727 record describes a flaw in the authentication mechanism for video stream requests in Genetec Security Center 5.14.0.0 prior to build 5.14.178.18. This vulnerability, with a CVSS score of 7.5 and classified as HIGH, may allow an unauthenticated attacker to access live video streams. Users of affected versions should verify and apply the vendor's remediation. The debrief is based on the s [truncated]
A high-severity local privilege escalation vulnerability affecting the deployment of RabbitMQ messaging infrastructure within Genetec products. The vulnerability, rated CVSS 3.1 7.8 (HIGH), stems from an insecure permission assignment issue (CWE-732) that allows an attacker with local access and low privileges to escalate to higher privilege levels without user interaction. The attack vector is local with [truncated]
A SQL injection vulnerability affecting the Access Manager role in Genetec Security Center was disclosed on May 25, 2026, with vendor documentation updated May 26, 2026. The vulnerability is classified as CWE-89 (SQL Injection) with a CVSS 3.1 score of 6.6 (Medium severity). The attack vector requires network access, high attack complexity, and high privileges (Access Manager role), with no user interacti [truncated]