Vulnerabilities > Intelbras
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-17 | CVE-2021-32403 | Cross-Site Request Forgery (CSRF) vulnerability in Intelbras RF 301K Firmware 1.1.2 Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of security mechanisms for token protection and unsafe inputs and modules. | 8.8 |
| 2021-04-14 | CVE-2021-3017 | Unspecified vulnerability in Intelbras WIN 300 Firmware and WRN 342 Firmware The web interface on Intelbras WIN 300 and WRN 342 devices through 2021-01-04 allows remote attackers to discover credentials by reading the def_wirelesspassword line in the HTML source code. | 7.5 |
| 2021-04-12 | CVE-2020-24285 | Unspecified vulnerability in Intelbras Tip200 Firmware and Tip200Lite Firmware INTELBRAS TELEFONE IP TIP200 version 60.61.75.22 allows an attacker to obtain sensitive information through /cgi-bin/cgiServer.exx. | 7.5 |
| 2020-11-27 | CVE-2020-12262 | Cross-site Scripting vulnerability in Intelbras products Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi-bin/cgiServer.exx?page= XSS. | 5.4 |
| 2020-11-26 | CVE-2020-13886 | Path Traversal vulnerability in Intelbras products Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 65.61.75.22 devices allow cgi-bin/cgiServer.exx?page=../ Directory Traversal. | 5.3 |
| 2020-05-05 | CVE-2020-8829 | Cross-Site Request Forgery (CSRF) vulnerability in Intelbras CIP 92200 Firmware CSRF on Intelbras CIP 92200 devices allows an attacker to access the panel and perform scraping or other analysis. | 8.8 |
| 2020-05-05 | CVE-2019-19517 | Cross-Site Request Forgery (CSRF) vulnerability in Intelbras Action RF 1200 Firmware 1.1.3 Intelbras RF1200 1.1.3 devices allow CSRF to bypass the login.html form, as demonstrated by launching a scrapy process. | 8.8 |
| 2020-01-17 | CVE-2019-19142 | Missing Authentication for Critical Function vulnerability in Intelbras WRN 240 Firmware 2.0.0 Intelbras WRN240 devices do not require authentication to replace the firmware via a POST request to the incoming/Firmware.cfg URI. | 7.5 |
| 2020-01-05 | CVE-2019-20004 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Intelbras IWR 3000N Firmware 1.8.7 An issue was discovered on Intelbras IWR 3000N 1.8.7 devices. | 8.8 |
| 2019-12-26 | CVE-2019-19996 | Unspecified vulnerability in Intelbras IWR 3000N Firmware 1.8.7 An issue was discovered on Intelbras IWR 3000N 1.8.7 devices. | 7.5 |