CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-7059
https://notcve.org/view.php?id=CVE-2024-7059
05 Nov 2024 — A high-severity vulnerability that can lead to arbitrary code execution on the system hosting the Web SDK role was found in the Genetec Security Center product line. A high-severity vulnerability that can lead to arbitrary code execution was found in the Genetec Security Center product line. • https://resources.genetec.com/security-advisories/high-severity-vulnerability-affecting-security-center-web-sdk-role • CWE-470: Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection') •
CVSS: 9.0EPSS: 0%CPEs: 2EXPL: 0CVE-2023-1522
https://notcve.org/view.php?id=CVE-2023-1522
05 Apr 2023 — SQL Injection in the Hardware Inventory report of Security Center 5.11.2. • https://www.genetec.com/blog/data-protection/high-severity-vulnerability-affecting-the-hardware-inventory-report-task-of-security-center • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •