CVE-2026-12211

CVE Database · CVE-2026-12211

CVE-2026-12211

· LOWReceived

CVSS v3.1

2.7

CVSS v4.0

2.0

EPSS

0.37%

Published

Jun 15, 2026

Modified

Jun 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A flaw has been found in Intelbras iNVU 7016 FT 3.004.00IB000.0.T Build 2025-09-26. This impacts an unknown function of the file /RPC2_Loadfile/syslog/ of the component Web Interface. Executing a manipulation can lead to path traversal. The attack can be launched remotely. The exploit has been published and may be used. It is recommended to upgrade the affected component. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

Weaknesses (CWE)

CWE-22

References (6)

http://api-cronos.intelbras.com.br/download/INVU/INVU7016FT/prod/INVU7016FT-2026.05.29-712953bf2bb2af7e72d0577ad5ef6455.260527.BIN

https://coaglio.com/writeups/lfi-intelbras-invu.html

https://vuldb.com/cve/CVE-2026-12211

https://vuldb.com/submit/832544

https://vuldb.com/vuln/370853

https://vuldb.com/vuln/370853/cti

KEV Catalog EPSS Scores Vendors All CVEs