Directory Traversal Vulnerability in Intelbras TIP Products
CVE-2020-13886
Key Information:
- Vendor
- Intelbras
- Status
- Vendor
- CVE Published:
- 26 November 2020
Badges
Summary
The Intelbras TIP 200 and TIP 300 series devices are susceptible to a directory traversal vulnerability that allows an attacker to access restricted files on the system. By manipulating the URL to exploit the cgi-bin/cgiServer.exx interface, an unauthorized user can traverse directories and potentially gain access to sensitive information. This type of vulnerability poses significant risks to the integrity and confidentiality of the system, making it crucial for users to apply security patches and updates provided by Intelbras.
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
References
CVSS V3.1
Timeline
Vulnerability published
- 🟡
Public PoC available
- 👾
Exploit known to exist
Vulnerability Reserved