CVE-2025-7061

Name of the Vulnerable Software and Affected Versions: Intelbras InControl versions up to 2.21.60.9

Description: A vulnerability was found in Intelbras InControl, affecting unknown code of the file /v1/operador/. The manipulation leads to csv injection. The attack can be initiated remotely.

Recommendations: For versions up to 2.21.60.9, as a temporary workaround, consider restricting access to the /v1/operador/ endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.