CVE-2025-4286

Name of the Vulnerable Software and Affected Versions Intelbras InControl versions up to 2.21.59

Description A vulnerability was found in the component Dispositivos Edição Page, where the manipulation of the argument Senha de Comunicação leads to unprotected storage of credentials. This issue can be exploited remotely.

Recommendations For versions up to 2.21.59, wait for a later release that should fix this issue. As a temporary workaround, consider restricting access to the Dispositivos Edição Page component to minimize the risk of exploitation. Avoid using the Senha de Comunicação argument in affected areas until the issue is resolved.