Genieacs

genieacs

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Genieacs

genieacs

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-56015 1Genieacs 1Genieacs Apr 10, 2026 Apr 7, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 In GenieACS 1.2.13, an unauthenticated access vulnerability exists in the NBI API endpoint.
CVE-2021-46704 1Genieacs 1Genieacs Nov 21, 2024 Mar 6, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In GenieACS 1.2.x before 1.2.8, the UI interface API is vulnerable to unauthenticated OS command injection via the ping host argument (lib/ui/api.ts and lib/ping.ts). The vulnerability arises from insufficient input vali...Show more In GenieACS 1.2.x before 1.2.8, the UI interface API is vulnerable to unauthenticated OS command injection via the ping host argument (lib/ui/api.ts and lib/ping.ts). The vulnerability arises from insufficient input validation combined with a missing authorization check.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2025-56015

1Genieacs

Apr 10, 2026

Apr 7, 2026

N/A· v4

7.5 HIGH· v3

N/A· v2

In GenieACS 1.2.13, an unauthenticated access vulnerability exists in the NBI API endpoint.

CVE-2021-46704

1Genieacs

Nov 21, 2024

Mar 6, 2022

N/A· v4

9.8 CRITICAL· v3

7.5 HIGH· v2

In GenieACS 1.2.x before 1.2.8, the UI interface API is vulnerable to unauthenticated OS command injection via the ping host argument (lib/ui/api.ts and lib/ping.ts). The vulnerability arises from insufficient input vali...Show more