The vulnerability identified as CVE-2025-67070 affects the Intelbras CFTV IP NVD 9032 R Ftd V2.800.00IB00C.0.T surveillance device. The core issue lies in the password recovery mechanism, where an attacker can bypass the multi-factor authentication (MFA) process without any authentication. This bypass allows the attacker to reset the administrator password, thereby gaining full administrative privileges over the device. With administrative access, the attacker can control the device’s configuration, access live and recorded video feeds, and potentially pivot to other network resources. The vulnerability is particularly severe because it requires no prior authentication or user interaction, making exploitation straightforward for anyone with network access to the device. Although no CVSS score has been assigned yet, the vulnerability’s characteristics—unauthenticated access, complete control over the device, and critical impact on security—indicate a high-severity issue. No patches or mitigations have been officially released at the time of this report, and no known exploits are currently in the wild. Intelbras devices are commonly used in various sectors including corporate, governmental, and residential environments, increasing the potential impact of this vulnerability.

For European organizations, the impact of this vulnerability is significant. Surveillance systems are critical for physical security, and compromise of these devices can lead to unauthorized monitoring, privacy violations, and potential manipulation or disabling of security cameras. This undermines both physical and cybersecurity postures. Attackers gaining administrative access can alter configurations, disable alerts, or use the device as a foothold for lateral movement within the network. Sensitive environments such as government buildings, critical infrastructure, and corporate offices are particularly at risk. The breach of confidentiality and integrity of video data can also lead to regulatory and compliance issues under GDPR and other privacy laws. The availability of the surveillance system may be disrupted if attackers disable or misconfigure the device. Given the lack of authentication and ease of exploitation, the threat is elevated for any organization with exposed or poorly segmented Intelbras surveillance devices.

Organizations should immediately inventory all Intelbras CFTV IP NVD 9032 R devices and assess their network exposure. Until a vendor patch is available, restrict network access to the management interfaces of these devices using firewall rules and network segmentation, limiting access to trusted administrators only. Disable remote password recovery features if possible or implement compensating controls such as VPN access for management. Monitor logs and network traffic for unusual password reset attempts or unauthorized administrative access. Implement strong network monitoring and alerting to detect exploitation attempts. Engage with Intelbras support to obtain firmware updates or security advisories. Additionally, consider deploying intrusion detection/prevention systems (IDS/IPS) to identify exploitation attempts. Educate staff on the risks and ensure physical security of devices to prevent local exploitation. Finally, plan for rapid patch deployment once a fix is released.