| Title | Intelbras ICIP 2.0.20 Unprotected Storage of Credentials |
|---|
| Description | A information file on the Intelbras ICIP device is accessible via HTTP and contains the administrator username and password in cleartext. An unauthenticated remote user can read this file and obtain administrative credentials, enabling full device takeover. |
|---|
| Source | ⚠️ https://www.notion.so/eldruin/Intelbras-ICIP-Plaintext-Admin-Credentials-Disclosure-29b27474cccb80ff943ff2776d03d7cd |
|---|
| User | eldruin (UID 80359) |
|---|
| Submission | 10/30/2025 02:51 AM (6 months ago) |
|---|
| Moderation | 11/14/2025 02:03 PM (15 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 332475 [Intelbras ICIP 2.0.20 acessodeusuario.xml NomeUsuario/SenhaAcess credentials storage] |
|---|
| Points | 17 |
|---|