Vulnerability Description
A vulnerability classified as critical was found in Intelbras InControl 2.21.56. This vulnerability affects unknown code of the component incontrolWebcam Service. The manipulation leads to unquoted search path. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Upgrading to version 2.21.58 is able to address this issue. It is recommended to upgrade the affected component. The vendor was contacted early about this disclosure and plans to provide a solution within the next few weeks.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intelbras | Incontrol | 2.21.56 |
Related Weaknesses (CWE)
References
- https://backend.intelbras.com/sites/default/files/2024-10/Aviso%20de%20Seguran%C
- https://download.cronos.intelbras.com.br/download/INCONTROL/INCONTROL-WEB/prod/I
- https://vuldb.com/?ctiid.268822Permissions Required
- https://vuldb.com/?id.268822Third Party Advisory
- https://vuldb.com/?submit.353502Third Party Advisory
- https://vuldb.com/?ctiid.268822Permissions Required
- https://vuldb.com/?id.268822Third Party Advisory
- https://vuldb.com/?submit.353502Third Party Advisory
FAQ
What is CVE-2024-6080?
CVE-2024-6080 is a vulnerability with a CVSS score of 7.8 (HIGH). A vulnerability classified as critical was found in Intelbras InControl 2.21.56. This vulnerability affects unknown code of the component incontrolWebcam Service. The manipulation leads to unquoted se...
How severe is CVE-2024-6080?
CVE-2024-6080 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-6080?
Check the references section above for vendor advisories and patch information. Affected products include: Intelbras Incontrol.