Back to overview

CVE-2026-55727

HIGH
7.5
CVSS 3.1
Description
A flaw in the authentication mechanism for video stream requests in Genetec Security Center 5.14.0.0 prior to build 5.14.178.18 may allow an unauthenticated attacker to access live video streams.

Metadata

CVE ID
CVE-2026-55727
State
PUBLISHED
Assigner
Genetec
Reserved
2026-06-21 17:17 UTC
Published
2026-07-06 20:00 UTC
Last updated
2026-07-06 20:52 UTC
Primary CWE
CWE-287
CWE-287: Improper Authentication
Vendor / Product
Genetec Inc. / Genetec Security Center
Sources
cve.org  ·  NVD

Severity & Metrics

7.5 HIGH CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
SSVC — CISA Coordinator
Exploitation
none
Automatable
yes
Tech. Impact
partial
Affected products (1)
VendorProductPlatformVersions
Genetec Inc. Genetec Security Center Windows 5.14.0.0 build 5.14.178.8 < 5.14.0.0 build 5.14.178.18, 5.14.0.0 build 5.14.178.18
Weakness (CWE)
CWESourceDescription
CWE-287 cna CWE-287: Improper Authentication
CVSS scores (1)
ScoreSeverityVersionSourceVector
7.5 HIGH 3.1 cna CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Back to overview