Security Center
by McAfee
CVEs (7)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-43027 | Cri | 0.64 | 9.8 | 0.00 | Oct 30, 2025 | A critical severity vulnerability has been identified in the ALPR Manager role of Security Center that could allow attackers to gain administrative access to the Genetec Security Center system. The Genetec engineering team discovered this issue internally. There is currently no… | ||
| CVE-2024-7059 | Hig | 0.52 | 8.0 | 0.01 | Nov 5, 2024 | A high-severity vulnerability that can lead to arbitrary code execution on the system hosting the Web SDK role was found in the Genetec Security Center product line. | ||
| CVE-2026-27768 | Med | 0.43 | 6.6 | 0.00 | May 25, 2026 | SQL Injection affecting the Access Manager role. | ||
| CVE-2006-3961 | 0.06 | — | 0.34 | Aug 1, 2006 | Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted… | |||
| CVE-2007-2584 | 0.04 | — | 0.10 | May 10, 2007 | Buffer overflow in the IsOldAppInstalled function in the McSubMgr.McSubMgr Subscription Manager ActiveX control (MCSUBMGR.DLL) in McAfee SecurityCenter before 6.0.25 and 7.x before 7.2.147 allows remote attackers to execute arbitrary code via a crafted argument. | |||
| CVE-2023-1522 | 0.00 | — | 0.01 | Apr 5, 2023 | SQL Injection in the Hardware Inventory report of Security Center 5.11.2. | |||
| CVE-2020-25045 | 0.00 | — | 0.00 | Sep 2, 2020 | Installers of Kaspersky Security Center and Kaspersky Security Center Web Console prior to 12 & prior to 12 Patch A were vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges in the system. |
- risk 0.64cvss 9.8epss 0.00
A critical severity vulnerability has been identified in the ALPR Manager role of Security Center that could allow attackers to gain administrative access to the Genetec Security Center system. The Genetec engineering team discovered this issue internally. There is currently no…
- risk 0.52cvss 8.0epss 0.01
A high-severity vulnerability that can lead to arbitrary code execution on the system hosting the Web SDK role was found in the Genetec Security Center product line.
- risk 0.43cvss 6.6epss 0.00
SQL Injection affecting the Access Manager role.
- CVE-2006-3961Aug 1, 2006risk 0.06cvss —epss 0.34
Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted…
- CVE-2007-2584May 10, 2007risk 0.04cvss —epss 0.10
Buffer overflow in the IsOldAppInstalled function in the McSubMgr.McSubMgr Subscription Manager ActiveX control (MCSUBMGR.DLL) in McAfee SecurityCenter before 6.0.25 and 7.x before 7.2.147 allows remote attackers to execute arbitrary code via a crafted argument.
- CVE-2023-1522Apr 5, 2023risk 0.00cvss —epss 0.01
SQL Injection in the Hardware Inventory report of Security Center 5.11.2.
- CVE-2020-25045Sep 2, 2020risk 0.00cvss —epss 0.00
Installers of Kaspersky Security Center and Kaspersky Security Center Web Console prior to 12 & prior to 12 Patch A were vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges in the system.