CVE-2025-6765

Medium CVSS: 5.3

A vulnerability, which was classified as critical, has been found in Intelbras InControl 2.21.60.9. This issue affects some unknown processing of the file /v1/operador/ of the component HTTP PUT Request Handler. The manipulation leads to permission issues. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor

Intelbras

Product

Incontrol Web

CWE

CWE-266

Yayın Tarihi

2025-06-27 12:15:45

Güncelleme

2025-08-20 02:55:43

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-266 Incontrol Web MEDIUM Intelbras 2025

Referanslar

https://vuldb.com/?ctiid.314075 https://vuldb.com/?id.314075 https://vuldb.com/?submit.599873 https://vuldb.com/?submit.599880 https://vuldb.com/?submit.599873 https://vuldb.com/?submit.599880

Benzer Kayıtlar

Medium

CVE-2026-3101

A vulnerability was found in Intelbras TIP 635G 1.12.3.5. This vulnerability affects unknown code of the component Ping…

Medium

CVE-2025-13187

A security vulnerability has been detected in Intelbras ICIP 2.0.20. Affected is an unknown function of the file /xml/si…

High

CVE-2025-55976

Intelbras IWR 3000N 1.9.8 exposes the Wi-Fi password in plaintext via the /api/wireless endpoint. Any unauthenticated us…

High

CVE-2025-26065

A cross-site scripting (XSS) vulnerability in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows attackers to execute arb…

Low

CVE-2025-8515

A weakness has been identified in Intelbras InControl 2.21.60.9. This vulnerability affects unknown code of the file /v1…

Critical

CVE-2025-26062

An access control issue in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows unauthenticated attackers to access the rou…