Known Vulnerabilities for products from Intelbras
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Intelbras".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Intelbras can be found at device.report : Intelbras
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-36144 | An authentication bypass in Intelbras Switch SG 2404 MR in firmware 1.00.54 allows an unauthenticated attacker to download th... | 7.5 - HIGH | 2023-06-30 | 2023-07-10 |
| CVE-2023-6103 | An authentication bypass in Intelbras Switch SG 2404 MR in firmware 1.00.54 allows an unauthenticated attacker to download th... | 5.4 - MEDIUM | 2023-11-13 | 2023-11-20 |
| CVE-2022-43308 | INTELBRAS SG 2404 MR 20180928-rel64938 allows authenticated attackers to arbitrarily create Administrator accounts via crafte... | 7.8 - HIGH | 2022-11-18 | 2022-11-23 |
| CVE-2022-40005 | Intelbras WiFiber 120AC inMesh before 1-1-220826 allows command injection by authenticated users, as demonstrated by the /boa... | 8.8 - HIGH | 2022-12-25 | 2023-01-05 |
| CVE-2022-24654 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.4 - MEDIUM | 2022-08-15 | 2022-10-26 |
| CVE-2021-32403 | Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of security mechanisms... | 8.8 - HIGH | 2021-05-17 | 2022-01-01 |
| CVE-2021-32402 | Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of validation and inse... | 8.8 - HIGH | 2021-05-17 | 2021-05-25 |
| CVE-2021-3017 | The web interface on Intelbras WIN 300 and WRN 342 devices through 2021-01-04 allows remote attackers to discover credentials... | 7.5 - HIGH | 2021-04-14 | 2021-04-21 |
| CVE-2020-24285 | INTELBRAS TELEFONE IP TIP200 version 60.61.75.22 allows an attacker to obtain sensitive information through /cgi-bin/cgiServe... | 7.5 - HIGH | 2021-04-12 | 2021-09-09 |
| CVE-2020-13886 | Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 65.61.75.22 devices allow cgi-bin/cgiServer.exx?page=../... | 5.3 - MEDIUM | 2020-11-26 | 2022-08-06 |
| CVE-2020-12262 | Intelbras TIP200 60.61.75.15, TIP200LITE 60.61.75.15, and TIP300 65.61.75.15 devices allow /cgi-bin/cgiServer.exx?page= XSS. | 5.4 - MEDIUM | 2020-11-27 | 2022-08-06 |
| CVE-2020-8829 | CSRF on Intelbras CIP 92200 devices allows an attacker to access the panel and perform scraping or other analysis. | 8.8 - HIGH | 2020-05-05 | 2020-05-07 |
| CVE-2019-20004 | An issue was discovered on Intelbras IWR 3000N 1.8.7 devices. When the administrator password is changed from a certain clien... | 8.8 - HIGH | 2020-01-05 | 2023-11-07 |
| CVE-2019-19996 | An issue was discovered on Intelbras IWR 3000N 1.8.7 devices. A malformed login request allows remote attackers to cause a de... | 7.5 - HIGH | 2019-12-26 | 2023-11-07 |
| CVE-2019-19995 | A CSRF issue was discovered on Intelbras IWR 3000N 1.8.7 devices, leading to complete control of the router, as demonstrated ... | 8.8 - HIGH | 2019-12-26 | 2023-11-07 |
| CVE-2019-19517 | Intelbras RF1200 1.1.3 devices allow CSRF to bypass the login.html form, as demonstrated by launching a scrapy process. | 8.8 - HIGH | 2020-05-05 | 2020-05-07 |
| CVE-2019-19516 | Intelbras WRN 150 1.0.18 devices allow CSRF via GO=system_password.asp to the goform/SysToolChangePwd URI to change a passwor... | 6.5 - MEDIUM | 2019-12-02 | 2019-12-13 |
| CVE-2019-19142 | Intelbras WRN240 devices do not require authentication to replace the firmware via a POST request to the incoming/Firmware.cf... | 7.5 - HIGH | 2020-01-17 | 2023-02-01 |
| CVE-2019-19007 | Intelbras IWR 3000N 1.8.7 devices allow disclosure of the administrator login name and password because v1/system/user is mis... | 7.2 - HIGH | 2019-12-05 | 2023-11-07 |
| CVE-2019-17600 | Intelbras IWR 1000N 1.6.4 devices allow disclosure of the administrator login name and password because v1/system/user is mis... | 9.8 - CRITICAL | 2019-10-15 | 2019-11-16 |
Known software with vulnerabilities from Intelbras
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Intelbras | Iwr 1000n | - |
| Operating System | Intelbras | Iwr 1000n Firmware | 1.6.4 |
| Operating System | Intelbras | Iwr 3000n Firmware | 1.8.7 |
| Operating System | Intelbras | Wrn 150 Firmware | 1.0.17 |
| Operating System | Intelbras | Wrn 240 Firmware | 2.0.0 |