A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. This affects an unknown part of the file C:\Program Files (x86)\Intelbras\Incontrol Cliente\incontrol_webcam\incontrol-service-watchdog.exe. The manipulation leads to unquoted search path. It is possible to launch the attack on the local host. The vendor was informed early on 2024-08-05 about this issue. The release of a fixed version 2.21.58 was announced for the end of August 2024 but then was postponed

A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. This affects an unknown part of the file C:\Program Files (x86)\Intelbras\Incontrol Cliente\incontrol_webcam\incontrol-service-watchdog.exe. The manipulation leads to unquoted search path. It is possible to launch the attack on the local host. Upgrading to version 2.21.58 is able to address this issue. It is recommended to upgrade the affected component. The vendor was informed early on 2024-08-05 about t

VulDB CWE-426

VulDB https://backend.intelbras.com/sites/default/files/2024-10/Aviso%20de%20Seguran%C3%A7a%20-%20Incontrol%202.21.56%20e%202.21.57.pdf [No types assigned]

VulDB https://download.cronos.intelbras.com.br/download/INCONTROL/INCONTROL-WEB/prod/INCONTROL-WEB-2.21.58-233dfd1ac1e2ca3eabb71c854005c78b.exe [No types assigned]

NIST AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

OR
     *cpe:2.3:a:intelbras:incontrol_web:*:*:*:*:*:*:*:* versions up to (excluding) 2.21.58

https://vuldb.com/?ctiid.278829 No Types Assigned

https://vuldb.com/?ctiid.278829 Permissions Required

https://vuldb.com/?id.278829 No Types Assigned

https://vuldb.com/?id.278829 Permissions Required

https://vuldb.com/?submit.385397 No Types Assigned

https://vuldb.com/?submit.385397 Exploit, Third Party Advisory

A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. This affects an unknown part of the file C:\Program Files (x86)\Intelbras\Incontrol Cliente\incontrol_webcam\incontrol-service-watchdog.exe. The manipulation leads to unquoted search path. It is possible to launch the attack on the local host. The vendor was informed early on 2024-08-05 about this issue. The release of a fixed version 2.21.58 was announced for the end of August 2024 but then was postponed

VulDB CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

VulDB AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

VulDB (AV:L/AC:L/Au:S/C:C/I:C/A:C)

VulDB CWE-428

VulDB https://vuldb.com/?ctiid.278829 [No types assigned]

VulDB https://vuldb.com/?id.278829 [No types assigned]

VulDB https://vuldb.com/?submit.385397 [No types assigned]