CVE-2025-7061

Medium CVSS: 5.1

A vulnerability was found in Intelbras InControl up to 2.21.60.9. It has been declared as problematic. This vulnerability affects unknown code of the file /v1/operador/. The manipulation leads to csv injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vendor

Intelbras

Product

Incontrol Web

CWE

CWE-74

Yayın Tarihi

2025-07-04 13:15:25

Güncelleme

2025-08-20 02:59:02

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Incontrol Web MEDIUM Intelbras 2025

Referanslar

https://vuldb.com/?ctiid.314836 https://vuldb.com/?id.314836 https://vuldb.com/?submit.600881 https://vuldb.com/?submit.600881

Benzer Kayıtlar

Medium

CVE-2026-3101

A vulnerability was found in Intelbras TIP 635G 1.12.3.5. This vulnerability affects unknown code of the component Ping…

Medium

CVE-2025-13187

A security vulnerability has been detected in Intelbras ICIP 2.0.20. Affected is an unknown function of the file /xml/si…

High

CVE-2025-55976

Intelbras IWR 3000N 1.9.8 exposes the Wi-Fi password in plaintext via the /api/wireless endpoint. Any unauthenticated us…

High

CVE-2025-26065

A cross-site scripting (XSS) vulnerability in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows attackers to execute arb…

Low

CVE-2025-8515

A weakness has been identified in Intelbras InControl 2.21.60.9. This vulnerability affects unknown code of the file /v1…

Critical

CVE-2025-26062

An access control issue in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows unauthenticated attackers to access the rou…