Information Disclosure Vulnerability in Genetec Update Service by Genetec
CVE-2025-1787

5.8MEDIUM

Key Information:

Vendor: Genetec Inc.
Status: Genetec Update Service
Vendor: CVE Published:; 24 February 2026

🔔 Create Genetec Inc. Vulnerability Alert

What is CVE-2025-1787?

A local administrator on a Windows system could exploit a vulnerability in the Genetec Update Service, allowing them to leak sensitive information from the service's configuration web page. This exploitation could lead to elevated privileges within the Genetec environment. Additionally, this vulnerability may be combined with other related vulnerabilities to further escalate privileges, highlighting the importance of securing the update service against unauthorized access.

Affected Version(s)

Genetec Update Service Windows <2.10.600 < 2.10.600

Genetec Update Service Windows >=2.10.600 >= 2.10.600

References

https://techdocs.genetec.com/r/en-US/Security-Updates-for...

CVSS V4

Score:

5.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 24, 2026
Vulnerability Reserved
Feb 28, 2025

Credit

Rutger Flohil

CVE-2025-1787 Data

JSON