CVE-2018-9010

2018-03-2518:00:00

mitre

www.cve.org

7 High

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.9%

JSON

Intelbras TELEFONE IP TIP200/200 LITE 60.0.75.29 devices allow remote authenticated admins to read arbitrary files via the /cgi-bin/cgiServer.exx page parameter, aka absolute path traversal. In some cases, authentication can be achieved via the admin account with its default admin password.

References

www.exploit-db.com/exploits/44317/