Home / Vulnerability Intelligence / CVE-2025-56015

CVE-2025-56015 - Vulnerability Analysis

N/a

Last Updated: April 7, 2026

GenieACS - Broken Access Control

Published: April 7, 2026Updated: April 7, 2026PoC Available

Overview

GenieACS 1.2.13 contains an unauthenticated access vulnerability in the NBI API endpoint, letting unauthenticated attackers access restricted API functionality, exploit requires no authentication.

Severity & Score

Severity: N/a

Impact

Unauthenticated attackers can access restricted API functionality, potentially leading to unauthorized data access or control.

Mitigation

Update to the latest version of GenieACS.

References

https://github.com/e1st/CVE-2025-56015
https://github.com/genieacs/genieacs/

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2025-56015
Severity: N/a
Type: undefined
Status: new

CVSS Metrics

N/A