{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-2928","assignerOrgId":"f2b06212-cb4b-41a4-9501-fa2e367495b8","state":"PUBLISHED","assignerShortName":"Genetec","dateReserved":"2025-03-28T13:26:05.258Z","datePublished":"2025-07-29T17:44:23.252Z","dateUpdated":"2026-02-26T17:50:13.947Z"},"containers":{"cna":{"providerMetadata":{"orgId":"f2b06212-cb4b-41a4-9501-fa2e367495b8","shortName":"Genetec","dateUpdated":"2025-07-29T17:46:49.036Z"},"problemTypes":[{"descriptions":[{"lang":"en","cweId":"CWE-89","description":"Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')","type":"CWE"}]}],"impacts":[{"capecId":"CAPEC-66","descriptions":[{"lang":"en","value":"CAPEC-66: SQL Injection"}]}],"affected":[{"vendor":"Genetec Inc.","product":"Genetec Security Center","platforms":["Windows"],"versions":[{"status":"affected","versionType":"semver","version":">=5.9.0.0 <5.9.5.9"},{"status":"unaffected","versionType":"semver","version":">=5.9.5.9"},{"status":"affected","versionType":"semver","version":">=5.10.0.0 <5.10.4.28"},{"status":"unaffected","versionType":"semver","version":">=5.10.4.28"},{"status":"affected","versionType":"semver","version":">=5.11.0.0 <5.11.3.19"},{"status":"unaffected","versionType":"semver","version":">=5.11.3.19"},{"status":"affected","versionType":"semver","version":">=5.12.0.0 <5.12.2.6"},{"status":"unaffected","versionType":"semver","version":">=5.12.2.6"},{"status":"affected","versionType":"semver","version":">=5.13.0.0 <5.13.1.1"},{"status":"unaffected","versionType":"semver","version":">=5.13.1.1"}],"defaultStatus":"unaffected"}],"descriptions":[{"lang":"en","value":"SQL Injection affecting the Archiver role."}],"metrics":[{"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}],"cvssV3_0":{"baseScore":7.2,"baseSeverity":"HIGH","vectorString":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","version":"3.0"},"cvssV3_1":{"baseScore":7.2,"baseSeverity":"HIGH","vectorString":"CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H","version":"3.1"}}],"solutions":[{"lang":"en","value":"This issue is fixed in Security Center 5.9.5.9, 5.10.4.28, 5.11.3.19, 5.12.2.6, 5.13.1.1 and all later versions."}],"references":[{"url":"https://techdocs.genetec.com/viewer/book-attachment/SZjl87Xb1QrEBmA7EPMZ0Q/wXhU660do0oVQGF89qoodA-SZjl87Xb1QrEBmA7EPMZ0Q"},{"url":"https://techdocs.genetec.com/viewer/book-attachment/EG5x3MPOu~J5abi1egkvRA/N2xk_nlluPjBSxRU11ZCVA-EG5x3MPOu~J5abi1egkvRA"},{"url":"https://techdocs.genetec.com/r/en-US/Security-Updates-for-Security-Center-5.11/Resolved-vulnerabilities-in-Security-Center-5.11.3.19"},{"url":"https://techdocs.genetec.com/r/en-US/Security-Updates-for-Security-Center-5.12/Resolved-vulnerabilities-in-Security-Center-5.12.2.6"},{"url":"https://techdocs.genetec.com/r/en-US/Security-Updates-for-Security-Center-5.13/Resolved-vulnerabilities-in-Security-Center-5.13.1.1"}]},"adp":[{"metrics":[{"other":{"type":"ssvc","content":{"id":"CVE-2025-2928","role":"CISA Coordinator","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"version":"2.0.3","timestamp":"2025-08-05T03:56:14.239319Z"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-02-26T17:50:13.947Z"}}]}}