Vulnerabilities > Intelbras > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-13 CVE-2023-6103 Unspecified vulnerability in Intelbras RX 1500 Firmware 1.1.9
A vulnerability has been found in Intelbras RX 1500 1.1.9 and classified as problematic.
network
low complexity
intelbras
5.4
5.4
2022-08-15 CVE-2022-24654 Cross-site Scripting vulnerability in Intelbras ATA 200 Firmware 74.19.10.21
Authenticated stored cross-site scripting (XSS) vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows attackers to inject JavaScript code through a crafted payload.
network
low complexity
intelbras CWE-79
5.4
5.4
2020-11-27 CVE-2020-12262 Cross-site Scripting vulnerability in Intelbras products
Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi-bin/cgiServer.exx?page= XSS.
network
low complexity
intelbras CWE-79
5.4
5.4
2020-11-26 CVE-2020-13886 Path Traversal vulnerability in Intelbras products
Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 65.61.75.22 devices allow cgi-bin/cgiServer.exx?page=../ Directory Traversal.
network
low complexity
intelbras CWE-22
5.3
5.3
2019-12-02 CVE-2019-19516 Cross-Site Request Forgery (CSRF) vulnerability in Intelbras WRN 150 Firmware 1.0.18
Intelbras WRN 150 1.0.18 devices allow CSRF via GO=system_password.asp to the goform/SysToolChangePwd URI to change a password.
network
low complexity
intelbras CWE-352
6.5
6.5
2019-11-07 CVE-2019-17222 Cross-site Scripting vulnerability in Intelbras WRN 150 Firmware 1.0.17
An issue was discovered on Intelbras WRN 150 1.0.17 devices.
network
low complexity
intelbras CWE-79
6.1
6.1
2018-10-10 CVE-2018-17337 Cross-site Scripting vulnerability in Intelbras Nplug Firmware 1.0.0.14
Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast.
network
low complexity
intelbras CWE-79
6.1
6.1
2017-09-07 CVE-2017-14219 Cross-site Scripting vulnerability in Intelbras WRN 240 Firmware
XSS (persistent) on the Intelbras Wireless N 150Mbps router with firmware WRN 240 allows attackers to steal wireless credentials without being connected to the network, related to userRpm/popupSiteSurveyRpm.htm and userRpm/WlanSecurityRpm.htm.
network
low complexity
intelbras CWE-79
6.1
6.1