Description
A vulnerability was found in Intelbras VIP S3020 G2, VIP S4020 G2, VIP S4020 G3 and VIP S4320 G2 up to 20241222 and classified as problematic. Affected by this issue is some unknown functionality of the file /web_caps/webCapsConfig of the component Web Interface. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor assesses that "the information disclosed in the URL is not sensitive or poses any risk to the user".
References (5)
Core 5
Core References
Various Sources
https://netsecfish.notion.site/IntelBras-IP-Camera-Information-Disclosure-15e6b683e67c80a89f89daf59daa9ea8
Permissions Required, VDB Entry vdb-entry
https://vuldb.com/?id.289166
Permissions Required, VDB Entry signature
permissions-required
https://vuldb.com/?ctiid.289166
Permissions Required, VDB Entry third-party-advisory
https://vuldb.com/?submit.464258
Scores
CVSS v3
5.3
EPSS
0.0046
EPSS Percentile
36.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-200
CWE-284
Status
published
Products (4)
Intelbras/VIP S3020 G2
20241222
Intelbras/VIP S4020 G2
20241222
Intelbras/VIP S4020 G3
20241222
Intelbras/VIP S4320 G2
20241222
Published
Dec 22, 2024
Tracked Since
Feb 18, 2026