Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intelbras vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2019-19517
Intelbras RF1200 1.1.3 devices allow CSRF to bypass the login.html form, as demonstrated by launching a scrapy process.
Intelbras Action Rf 1200 Firmware 1.1.3
10
CVSSv2
CVE-2018-10369
A Cross-site scripting (XSS) vulnerability exists on Intelbras Win 240 V1.1.0 devices. An attacker can change the Admin Password without a Login.
Intelbras Win 240 Firmware 1.1.0
7.8
CVSSv2
CVE-2019-11415
An issue exists on Intelbras IWR 3000N 1.5.0 devices. A malformed login request allows remote malicious users to cause a denial of service (reboot), as demonstrated by JSON misparsing of the \""} string to v1/system/login.
Intelbras Iwr 3000n Firmware 1.5.0
1 EDB exploit
9.3
CVSSv2
CVE-2019-11416
A CSRF issue exists on Intelbras IWR 3000N 1.5.0 devices, leading to complete control of the router, as demonstrated by v1/system/user.
Intelbras Iwr 3000n Firmware 1.5.0
1 EDB exploit
4.3
CVSSv2
CVE-2019-11414
An issue exists on Intelbras IWR 3000N 1.5.0 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address, leading to complete control of the router.
Intelbras Iwr 3000n Firmware 1.5.0
4.3
CVSSv2
CVE-2018-17337
Intelbras NPLUG 1.0.0.14 devices have XSS via a crafted SSID that is received via a network broadcast.
Intelbras Nplug Firmware 1.0.0.14
9
CVSSv2
CVE-2019-19007
Intelbras IWR 3000N 1.8.7 devices allow disclosure of the administrator login name and password because v1/system/user is mishandled, a related issue to CVE-2019-17600.
Intelbras Iwr 3000n Firmware 1.8.7
5
CVSSv2
CVE-2019-19142
Intelbras WRN240 devices do not require authentication to replace the firmware via a POST request to the incoming/Firmware.cfg URI.
Intelbras Wrn 240 Firmware 2.0.0
1 EDB exploit
NA
CVE-2022-24654
Authenticated stored cross-site scripting (XSS) vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows malicious users to inject JavaScript code through a crafted payload.
Intelbras Ata 200 Firmware 74.19.10.21
1 Github repository
10
CVSSv2
CVE-2018-11094
An issue exists on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/ExportSettings.sh, the username, passwo...
Intelbras Ncloud 300 Firmware 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »