INTELBRAS TELEFONE IP TIP200 60.61.75.22 - Local File Inclusion
INTELBRAS TELEFONE IP TIP200 version 60.61.75.22 is vulnerable to information disclosure, allowing unauthenticated attackers to access sensitive device information and configuration data via a direct request to the /cgi-bin/export_settings.sh endpoint.
References:
- https://github.com/SecLoop/CVE/blob/main/telefone_ip_tip200.md
- https://nvd.nist.gov/vuln/detail/CVE-2020-24285
Remediation:
Update the device firmware to the latest version provided by INTELBRAS.
Short Info
Level
High
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 seconds
Time Interval
11 days 18 hours
Scan only one
Domain, Subdomain, IPv4
Toolbox