Skip to main content

Incontrol

2 CVEs product

Monthly

CVE-2026-57920 HIGH PATCH HOSTED Monitor

{orgId} REST endpoints they should not be able to access by appending a semicolon to the request path. With a scope-changing CVSS of 7.7 and confidentiality impact, a low-privileged tenant could read data belonging to other organizations managed by the same platform. No public exploit identified at time of analysis and the issue is not listed in CISA KEV.

Authentication Bypass Incontrol
NVD
CVSS 3.1
7.7
EPSS
0.2%
CVE-2024-6080 HIGH This Week

A vulnerability classified as critical was found in Intelbras InControl 2.21.56. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Incontrol
NVD VulDB
CVSS 4.0
8.5
EPSS
0.2%
EPSS 0% CVSS 7.7
HIGH PATCH HOSTED Monitor

{orgId} REST endpoints they should not be able to access by appending a semicolon to the request path. With a scope-changing CVSS of 7.7 and confidentiality impact, a low-privileged tenant could read data belonging to other organizations managed by the same platform. No public exploit identified at time of analysis and the issue is not listed in CISA KEV.

Authentication Bypass Incontrol
NVD
EPSS 0% CVSS 8.5
HIGH This Week

A vulnerability classified as critical was found in Intelbras InControl 2.21.56. Rated high severity (CVSS 8.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Incontrol
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy