CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-9010

Intelbras TELEFONE IP TIP200/200 LITE 60.0.75.29 devices allow remote authenticated admins to read arbitrary files via the /cgi-bin/cgiServer.exx page parameter, aka absolute path traversal. In some cases, authentication can be achieved via the admin account with its default admin password.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.172

EPSS Ranking 94.7%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 4.0

References

https://www.exploit-db.com/exploits/44317/
https://www.exploit-db.com/exploits/44317/

Products affected by CVE-2018-9010

Intelbras » Tip200 » Version: N/A

cpe:2.3:h:intelbras:tip200:-
Intelbras » Tip200lite » Version: N/A

cpe:2.3:h:intelbras:tip200lite:-
Intelbras » Tip200 Firmware » Version: 60.0.75.29

cpe:2.3:o:intelbras:tip200_firmware:60.0.75.29
Intelbras » Tip200lite Firmware » Version: 60.0.75.29

cpe:2.3:o:intelbras:tip200lite_firmware:60.0.75.29

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-9010

Products

Pricing

Contact Us