CVE-2025-0784

Name of the Vulnerable Software and Affected Versions Intelbras InControl versions up to 2.21.58

Description A vulnerability has been found in Intelbras InControl, affecting unknown code of the file /v1/usuario/ of the component Registered User Handler. The manipulation leads to cleartext transmission of sensitive information. The attack can be initiated remotely. The complexity of an attack is rather high, and the exploitation appears to be difficult.

Recommendations For Intelbras InControl versions up to 2.21.58, upgrade to version 2.21.59 to address this issue. As a temporary workaround, consider restricting access to the /v1/usuario/ endpoint of the Registered User Handler component until the upgrade is applied.