🔐 CVE Alert

CVE-2026-13211

MEDIUM 4.3

Genucenter Disclosure of SNMP Credentials

CVSS Score
4.3
EPSS Score
0.0%
EPSS Percentile
0th

The genucenter web interface before version 8.0p11 unnecessarily exposes sensitive SNMP authentication and encryption keys in its HTTP responses to users with the “Service” or “Admin” role.

CWE CWE-201
Vendor genua
Product genucenter
Published Jul 1, 2026
Last Updated Jul 1, 2026
Stay Ahead of the Next One

Get instant alerts for genua genucenter

Be the first to know when new medium vulnerabilities affecting genua genucenter are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
None
Availability
None

Affected Versions

genua / genucenter
8.0 ≤ 8.0p10

References

NVD ↗ CVE.org ↗ EPSS Data ↗
github.com: https://github.com/sbaresearch/advisories/tree/public/2026/SBA-ADV-20260424-01_Genucenter_Disclosure_of_SNMP_Credentials

Credits

Andreas Boll (SBA Research) Lisa Gnedt (SBA Research)