CVE-2026-13211
MEDIUM Exploitation: PoC
4.3
CVSS 3.1
Description
The genucenter web interface before version 8.0p11 unnecessarily exposes sensitive SNMP authentication and encryption keys in its HTTP responses to users with the “Service” or “Admin” role.
Metadata
Severity & Metrics
4.3
MEDIUM CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
SSVC — CISA Coordinator
Affected products (1)
| Vendor | Product | Platform | Versions |
|---|---|---|---|
| genua | genucenter | — | 8.0 ≤ 8.0p10, 8.0p11 < 8.1, 8.6 |
Weakness (CWE)
| CWE | Source | Description |
|---|---|---|
| CWE-201 | cna | CWE-201 Insertion of sensitive information into sent data |
CVSS scores (1)
| Score | Severity | Version | Source | Vector |
|---|---|---|---|---|
| 4.3 | MEDIUM | 3.1 | cna | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N |
References (1)