Vulnerabilities > Intelbras
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-02-06 | CVE-2024-22773 | Insecure Storage of Sensitive Information vulnerability in Intelbras Action RF 1200 Firmware 1.2.2 Intelbras Roteador ACtion RF 1200 1.2.2 esposes the Password in Cookie resulting in Login Bypass. | 8.1 |
2023-11-13 | CVE-2023-6103 | Cross-site Scripting vulnerability in Intelbras RX 1500 Firmware 1.1.9 A vulnerability has been found in Intelbras RX 1500 1.1.9 and classified as problematic. | 5.4 |
2023-06-30 | CVE-2023-36144 | Missing Authorization vulnerability in Intelbras SG 2404 MR Firmware 1.00.54 An authentication bypass in Intelbras Switch SG 2404 MR in firmware 1.00.54 allows an unauthenticated attacker to download the backup file of the device, exposing critical information about the device configuration. | 7.5 |
2022-11-18 | CVE-2022-43308 | Improper Privilege Management vulnerability in Intelbras SG 2404 MR Firmware and SG 2404 POE Firmware INTELBRAS SG 2404 MR 20180928-rel64938 allows authenticated attackers to arbitrarily create Administrator accounts via crafted user cookies. | 7.8 |
2022-08-15 | CVE-2022-24654 | Cross-site Scripting vulnerability in Intelbras ATA 200 Firmware 74.19.10.21 Authenticated stored cross-site scripting (XSS) vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows attackers to inject JavaScript code through a crafted payload. | 5.4 |
2021-05-17 | CVE-2021-32402 | Cross-Site Request Forgery (CSRF) vulnerability in Intelbras RF 301K Firmware 1.1.2 Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of validation and insecure configurations in inputs and modules. | 6.8 |
2021-05-17 | CVE-2021-32403 | Cross-Site Request Forgery (CSRF) vulnerability in Intelbras RF 301K Firmware 1.1.2 Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of security mechanisms for token protection and unsafe inputs and modules. | 6.8 |
2021-04-12 | CVE-2020-24285 | Unspecified vulnerability in Intelbras Tip200 Firmware and Tip200Lite Firmware INTELBRAS TELEFONE IP TIP200 version 60.61.75.22 allows an attacker to obtain sensitive information through /cgi-bin/cgiServer.exx. | 5.0 |
2020-11-27 | CVE-2020-12262 | Cross-site Scripting vulnerability in Intelbras products Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi-bin/cgiServer.exx?page= XSS. | 3.5 |
2020-11-26 | CVE-2020-13886 | Path Traversal vulnerability in Intelbras products Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 65.61.75.22 devices allow cgi-bin/cgiServer.exx?page=../ Directory Traversal. | 5.0 |