Remote Information Disclosure Vulnerability in Intelbras VIP-1230-D-G4 Camera
CVE-2026-36438

5.3MEDIUM

Key Information:

Vendor: Intelbras
Status: VIP-1230-D-G4
Vendor: CVE Published:; 18 May 2026

What is CVE-2026-36438?

A flaw in the Intelbras VIP-1230-D-G4 camera allows remote attackers to exploit the password reset feature, potentially leading to unauthorized access to sensitive information. Attackers can leverage this vulnerability through the /OutsideCmd endpoint, highlighting the need for enhanced security measures in the affected product versions.

References

https://backend.intelbras.com/sites/default/files/2023-03...

https://www.intelbras.com/pt-br/camera-dome-wi-fi-vip-123...

https://github.com/kensh1k/CVE-2026-36438/tree/main

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 18, 2026
Vulnerability Reserved
Apr 6, 2026

CVE-2026-36438 Data

JSON