CVE-2025-1790 | THREATINT

Description

Local privilege escalation in Genetec Sipelia Plugin. An authenticated low-privileged Windows user could exploit this vulnerability to gain elevated privileges on the affected system.

PUBLISHED Reserved 2025-02-28 | Published 2026-02-13 | Updated 2026-02-13 | Assigner Genetec

MEDIUM: 5.8CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:U/CR:H/IR:H/AR:H/MVC:H/MVI:H/MVA:H/MSI:H/MSA:H/S:P/AU:N/V:C

Problem types

Execution with Unnecessary Privileges

Product status

Default status

unaffected

<2.14.271 (semver)

affected

>=2.14.271 (semver)

unaffected

Credits

Rutger Flohil finder

References

techdocs.genetec.com/...Security-Updates-for-SipeliaTM-2.14/

cve.org (CVE-2025-1790)

nvd.nist.gov (CVE-2025-1790)

Download JSON