CVE-2025-6765

Name of the Vulnerable Software and Affected Versions: Intelbras InControl version 2.21.60.9

Description: A critical issue has been found in the HTTP PUT Request Handler component, affecting the processing of the file "/v1/operador/". This leads to permission issues and can be initiated remotely. The exploit has been disclosed publicly.

Recommendations: For Intelbras InControl version 2.21.60.9, consider restricting access to the "/v1/operador/" endpoint to minimize the risk of exploitation. As a temporary workaround, review and limit the use of HTTP PUT requests to this endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.