CVE-2024-7059

HIGH

Genetec Security Center - RCE

Title source: llm

Description

A high-severity vulnerability that can lead to arbitrary code execution on the system hosting the Web SDK role was found in the Genetec Security Center product line.

References (2)

Core 2

Core References

Various Sources

https://resources.genetec.com/security-advisories/high-severity-vulnerability-affecting-security-center-web-sdk-role

Various Sources

https://ressources.genetec.com/bulletins-de-securite/vulnerabilite-de-haute-severite-affectant-le-role-sdk-web-de-security-center

Scores

CVSS v3 8.0

EPSS 0.0053

EPSS Percentile 40.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-470

Status published

Products (12)

Genetec Inc./Genetec Security Center <5.8.2.1

Genetec Inc./Genetec Security Center >=5.10.0.0 <5.10.4.23

Genetec Inc./Genetec Security Center >=5.10.4.23

Genetec Inc./Genetec Security Center >=5.11.0.0 <5.11.3.13

Genetec Inc./Genetec Security Center >=5.11.3.13

Genetec Inc./Genetec Security Center >=5.12.0.0 <5.12.1.3

Genetec Inc./Genetec Security Center >=5.12.1.3 <5.12.2.0

Genetec Inc./Genetec Security Center >=5.12.2.0 <5.12.2.1

Genetec Inc./Genetec Security Center >=5.12.2.1

Genetec Inc./Genetec Security Center >=5.8.2.1

... and 2 more

Published Nov 05, 2024

Tracked Since Feb 18, 2026