CVEリスト - 高リスク・悪用確認済み脆弱性

NVD や CVE、ほか複数の脅威フィードを束ね、RCE など高リスクな事象を深く追える一覧です。CVSS と EPSS を組み合わせ、Exploit 参照や PoC の有無から悪用しやすさを追跡します。ベンダー修正や緩和策の文脈とあわせて優先度を決め、対応サイクルを短く保ちつつ重要資産を守る支援をします。

Assigner(CNA/発行元):[email protected] この条件を外す

CVSS スコア
表示中 110 / 10
«« 先頭 « 前へ 1 / 1 次へ »
CVE 説明 CVSS 最大値 EPSS(%) 公開 更新
CVE-2026-40619 A high security vulnerability affecting Security Center main server installations has been identified. It could allow an attacker with local OS privileges to the main server to access the Server Admin credentials. A third party hired by Genetec found the issue. There is currently no evidence of active exploitation. This vulnerability is associated with specific installation package builds rather than the product version identifier alone. Certain versions (including 5.10.4.0, 5.11.3.0, 5.12.2.0 7.8 0.11% 2026-06-02 2026-06-17
CVE-2026-27768 SQL Injection affecting the Access Manager role. 6.6 0.34% 2026-05-25 2026-06-17
CVE-2026-25112 A high-severity vulnerability in the deployment of Genetec RabbitMQ that allows a privilege escalation attack. 7.8 0.11% 2026-05-26 2026-06-17
CVE-2025-43027 A critical severity vulnerability has been identified in the ALPR Manager role of Security Center that could allow attackers to gain administrative access to the Genetec Security Center system. The Genetec engineering team discovered this issue internally. There is currently no evidence that this vulnerability has been exploited in the wild. 9.8 0.29% 2025-10-30 2026-06-17
CVE-2025-2928 SQL Injection affecting the Archiver role. 7.2 0.36% 2025-07-29 2026-06-17
CVE-2025-1790 Local privilege escalation in Genetec Sipelia Plugin. An authenticated low-privileged Windows user could exploit this vulnerability to gain elevated privileges on the affected system. 5.8 0.10% 2026-02-13 2026-06-17
CVE-2025-1789 Local privilege escalation in Genetec Update Service. An authenticated, low-privileged, Windows user could exploit this vulnerability to gain elevated privileges on the affected system. 5.8 0.10% 2026-02-24 2026-06-17
CVE-2025-1787 Local admin could to leak information from the Genetec Update Service configuration web page. An authenticated, admin privileged, Windows user could exploit this vulnerability to gain elevated privileges in the Genetec Update Service. Could be combined with CVE-2025-1789 to achieve low privilege escalation. 5.8 0.09% 2026-02-24 2026-06-17
CVE-2024-7059 A high-severity vulnerability that can lead to arbitrary code execution on the system hosting the Web SDK role was found in the Genetec Security Center product line. 8.9 0.53% 2024-11-05 2026-06-17
CVE-2023-1522 SQL Injection in the Hardware Inventory report of Security Center 5.11.2. 8.8 0.60% 2023-04-05 2026-06-17
«« 先頭 « 前へ 1 / 1 次へ »
cvelogic Threat Intelligence