Vulnerabilities > Intelbras > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-13 CVE-2023-6103 Cross-site Scripting vulnerability in Intelbras RX 1500 Firmware 1.1.9
A vulnerability has been found in Intelbras RX 1500 1.1.9 and classified as problematic.
network
low complexity
intelbras CWE-79
5.4
5.4
2022-08-15 CVE-2022-24654 Cross-site Scripting vulnerability in Intelbras ATA 200 Firmware 74.19.10.21
Authenticated stored cross-site scripting (XSS) vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows attackers to inject JavaScript code through a crafted payload.
network
low complexity
intelbras CWE-79
5.4
5.4
2021-05-17 CVE-2021-32402 Cross-Site Request Forgery (CSRF) vulnerability in Intelbras RF 301K Firmware 1.1.2
Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of validation and insecure configurations in inputs and modules.
network
intelbras CWE-352
6.8
6.8
2021-05-17 CVE-2021-32403 Cross-Site Request Forgery (CSRF) vulnerability in Intelbras RF 301K Firmware 1.1.2
Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of security mechanisms for token protection and unsafe inputs and modules.
network
intelbras CWE-352
6.8
6.8
2021-04-12 CVE-2020-24285 Unspecified vulnerability in Intelbras Tip200 Firmware and Tip200Lite Firmware
INTELBRAS TELEFONE IP TIP200 version 60.61.75.22 allows an attacker to obtain sensitive information through /cgi-bin/cgiServer.exx.
network
low complexity
intelbras
5.0
5.0
2020-11-26 CVE-2020-13886 Path Traversal vulnerability in Intelbras products
Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 65.61.75.22 devices allow cgi-bin/cgiServer.exx?page=../ Directory Traversal.
network
low complexity
intelbras CWE-22
5.0
5.0
2020-05-05 CVE-2020-8829 Cross-Site Request Forgery (CSRF) vulnerability in Intelbras CIP 92200 Firmware
CSRF on Intelbras CIP 92200 devices allows an attacker to access the panel and perform scraping or other analysis.
network
intelbras CWE-352
6.8
6.8
2020-05-05 CVE-2019-19517 Cross-Site Request Forgery (CSRF) vulnerability in Intelbras Action RF 1200 Firmware 1.1.3
Intelbras RF1200 1.1.3 devices allow CSRF to bypass the login.html form, as demonstrated by launching a scrapy process.
network
intelbras CWE-352
6.8
6.8
2019-12-02 CVE-2019-19516 Cross-Site Request Forgery (CSRF) vulnerability in Intelbras WRN 150 Firmware 1.0.18
Intelbras WRN 150 1.0.18 devices allow CSRF via GO=system_password.asp to the goform/SysToolChangePwd URI to change a password.
network
intelbras CWE-352
4.3
4.3
2019-11-07 CVE-2019-17222 Cross-site Scripting vulnerability in Intelbras WRN 150 Firmware 1.0.17
An issue was discovered on Intelbras WRN 150 1.0.17 devices.
network
intelbras CWE-79
4.3
4.3