CVE-2020-13886

Published: Nov 26, 2020 Last Modified: Nov 21, 2024 EU-VD ID: EUVD-2020-6094 Aliases: GSD-2020-13886

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,3

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: low

Integrity: none

Availability: none

MEDIUM 5,0

Source: [email protected]

Access Vector: network

Access Complexity: low

Authentication: none

Confidentiality: partial

Integrity: none

Availability: none

Description

AI Translation Available

Intelbras TIP 200 60.61.75.15, TIP 200 LITE 60.61.75.15, and TIP 300 65.61.75.22 devices allow cgi-bin/cgiServer.exx?page=../ Directory Traversal.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0181

Percentile

0,8th

Updated

EPSS Score Trend (Last 90 Days)

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Stable

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Confidentiality Availability

Potential Impacts:

Execute Unauthorized Code Or Commands Modify Files Or Directories Read Files Or Directories Dos: Crash, Exit, Or Restart

Applicable Platforms

Technologies: AI/ML

Likelihood of Exploit: High

View CWE Details

Operating System

Tip200Lite Firmware by Intelbras

Product Information

Vendor Intelbras

Product Tip200Lite Firmware

Version 60.61.75.15

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:intelbras:tip200lite_firmware:60.61.75.15:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Tip300 Firmware by Intelbras

Product Information

Vendor Intelbras

Product Tip300 Firmware

Version 65.61.75.22

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:intelbras:tip300_firmware:65.61.75.22:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Tip200 Firmware by Intelbras

Product Information

Vendor Intelbras

Product Tip200 Firmware

Version 60.61.75.15

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:intelbras:tip200_firmware:60.61.75.15:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://github.com/lucxssouza/CVE-2020-13886

Exploit Third Party Advisory

https://github.com/lucxssouza/CVE-2020-13886

https://lucxs.medium.com/cve-2020-13886-lfi-voip-intelbras-…

Exploit Third Party Advisory

https://lucxs.medium.com/cve-2020-13886-lfi-voip-intelbras-d30f27a39b22

https://www.youtube.com/watch?v=nNKBRx8IglI

Exploit Third Party Advisory

https://www.youtube.com/watch?v=nNKBRx8IglI

https://github.com/lucxssouza/CVE-2020-13886

Exploit Third Party Advisory

https://github.com/lucxssouza/CVE-2020-13886

https://lucxs.medium.com/cve-2020-13886-lfi-voip-intelbras-…

Exploit Third Party Advisory

https://lucxs.medium.com/cve-2020-13886-lfi-voip-intelbras-d30f27a39b22

https://www.youtube.com/watch?v=nNKBRx8IglI

Exploit Third Party Advisory

https://www.youtube.com/watch?v=nNKBRx8IglI

CVE-2020-13886

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Common Consequences

Applicable Platforms

Tip200Lite Firmware by Intelbras

Product Information

Tip300 Firmware by Intelbras

Product Information

Tip200 Firmware by Intelbras

Product Information

Iscriviti alla newsletter