CVE-2025-0784

CVSS 3.1 Score 3.7 of 10 (low)

Details

Published Jan 28, 2025

CWE ID 319

CWE ID 310

Summary

CVE-2025-0784 is a recently disclosed vulnerability affecting Intelbras InControl up to version 2.21.58. This issue lies within the Registered User Handler component and impacts an unknown part of the /v1/usuario/ file. The exploitation results in cleartext transmission of sensitive data, allowing the attack to be initiated remotely. The complexity and difficulty of an attack are relatively high, but the exploit has become public. To mitigate the risk, it is strongly advised to upgrade to version 2.21.59.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

inControl

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/23k8X-
https://www.cve.org/CVERecord?id=CVE-2025-0784
https://nvd.nist.gov/vuln/detail/CVE-2025-0784

Back to Vulnerability Database

CVE-2025-0784

CVSS 3.1 Score 3.7 of 10 (low)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations