Vulnerabilities > Intelbras > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-29 | CVE-2024-9325 | Unquoted Search Path or Element vulnerability in Intelbras Incontrol web A vulnerability classified as critical has been found in Intelbras InControl up to 2.21.56. | 7.8 |
| 2024-09-29 | CVE-2024-9324 | Code Injection vulnerability in Intelbras Incontrol web A vulnerability was found in Intelbras InControl up to 2.21.57. | 8.8 |
| 2024-06-17 | CVE-2024-6080 | Unquoted Search Path or Element vulnerability in Intelbras Incontrol 2.21.56 A vulnerability classified as critical was found in Intelbras InControl 2.21.56. | 7.8 |
| 2024-02-06 | CVE-2024-22773 | Insecure Storage of Sensitive Information vulnerability in Intelbras Action RF 1200 Firmware 1.2.2 Intelbras Action RF 1200 routers 1.2.2 and earlier and Action RG 1200 routers 2.1.7 and earlier expose the Password in Cookie resulting in Login Bypass. | 8.1 |
| 2023-06-30 | CVE-2023-36144 | Missing Authorization vulnerability in Intelbras SG 2404 MR Firmware 1.00.54 An authentication bypass in Intelbras Switch SG 2404 MR in firmware 1.00.54 allows an unauthenticated attacker to download the backup file of the device, exposing critical information about the device configuration. | 7.5 |
| 2022-11-18 | CVE-2022-43308 | Improper Privilege Management vulnerability in Intelbras SG 2404 MR Firmware and SG 2404 POE Firmware INTELBRAS SG 2404 MR 20180928-rel64938 allows authenticated attackers to arbitrarily create Administrator accounts via crafted user cookies. | 7.8 |
| 2020-01-17 | CVE-2019-19142 | Missing Authentication for Critical Function vulnerability in Intelbras WRN 240 Firmware 2.0.0 Intelbras WRN240 devices do not require authentication to replace the firmware via a POST request to the incoming/Firmware.cfg URI. | 7.5 |
| 2020-01-05 | CVE-2019-20004 | Weak Password Recovery Mechanism for Forgotten Password vulnerability in Intelbras IWR 3000N Firmware 1.8.7 An issue was discovered on Intelbras IWR 3000N 1.8.7 devices. | 8.8 |
| 2019-12-26 | CVE-2019-19996 | Unspecified vulnerability in Intelbras IWR 3000N Firmware 1.8.7 An issue was discovered on Intelbras IWR 3000N 1.8.7 devices. | 7.5 |
| 2019-12-26 | CVE-2019-19995 | Cross-Site Request Forgery (CSRF) vulnerability in Intelbras IWR 3000N Firmware 1.8.7 A CSRF issue was discovered on Intelbras IWR 3000N 1.8.7 devices, leading to complete control of the router, as demonstrated by v1/system/user. | 8.8 |