Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.7
IntelBras Telefone IP TIP200 Devices Allow Unauthorized Access to Sensitive Files
CVE-2019-25472
Summary
IntelBras devices allow anyone to access sensitive files like password lists without a password. This means an attacker could see confidential information. Update the software to fix this issue.
Original title
IntelBras Telefone IP TIP200 and 200 LITE contain an unauthenticated arbitrary file read vulnerability in the dumpConfigFile function accessible via the cgiServer.exx endpoint. Attackers can send G...
Original description
IntelBras Telefone IP TIP200 and 200 LITE contain an unauthenticated arbitrary file read vulnerability in the dumpConfigFile function accessible via the cgiServer.exx endpoint. Attackers can send GET requests to /cgi-bin/cgiServer.exx with the command parameter containing dumpConfigFile() to read sensitive files including /etc/shadow and configuration files without proper authorization.
nvd CVSS3.1
7.5
nvd CVSS4.0
8.7
Vulnerability type
CWE-73
Published: 11 Mar 2026 · Updated: 13 Mar 2026 · First seen: 11 Mar 2026