| tiêu đề | IntelBras IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z, IPC-HDW1200S, VIP S3020 G2, VIP S4020 G2, VIP S4320 G2, VIP S4020 G3 WebVersion: 3.2.1.225946; WebVersion: 3.2.1.291804 Path Traversal |
|---|
| Mô tả | A critical path traversal vulnerability has been identified in several IntelBras IP Camera devices, including models VIP S3020 G2, VIP S4020 G2, IPC-HFW1200S, IPC-HFW2300R-Z, IPC-HFW5220E-Z, and IPC-HDW1200S. This vulnerability allows attackers to bypass directory restrictions and access sensitive files, such as ../mtd/Config/Sha1Account1 and ../mtd/Config/Account1, which contain hashed/encrypted credentials and other configuration data. By exploiting this flaw, attackers can gain unauthorized access to the devices, potentially compromising system security and exposing critical information. |
|---|
| Nguồn | ⚠️ https://netsecfish.notion.site/Path-Traversal-Vulnerability-in-IntelBras-IP-Cameras-mtd-Config-Sha1Account1-and-mtd-Confi-15e6b683e67c80809442ee3425f753b7?pvs=4 |
|---|
| Người dùng | netsecfish (UID 64568) |
|---|
| Đệ trình | 16/12/2024 10:13 (cách đây 1 Năm) |
|---|
| Kiểm duyệt | 04/01/2025 10:11 (19 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 290204 [Dahua IPC-HFW1200S đến 20241222 Web Interface Sha1Account1 tiết lộ thông tin] |
|---|
| điểm | 17 |
|---|