GCVE - cpe:2.3:a:intelbras:telefone_ip_tip_200_lite:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:intelbras:telefone_ip_tip_200_lite:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Intelbras (`2b2fad66-17b2-58cb-a9f2-84cc7e530641`)
Product	Telefone Ip Tip 200 Lite (`361e8615-9a97-5092-8aaf-4412aab39da2`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-25472`	vulnerable	2026-06-03 14:40:18.551719	IntelBras Telefone IP TIP200/200 LITE Arbitrary File Read via dumpConfigFile HIGH (7.5) IntelBras Telefone IP TIP200 and 200 LITE contain an unauthenticated arbitrary file read vulnerability in the dumpConfigFile function accessible via the cgiServer.exx endpoint. Attackers can send GET requests to /cgi-bin/cgiServer.exx with the command parameter containing dumpConfigFile() to read sensitive files including /etc/shadow and configuration files without proper authorization. Published: 2026-03-11T18:23:15.474Z Updated: 2026-04-07T14:04:29.982Z Open on db.gcve.eu Reference links https://www.exploit-db.com/exploits/47337 https://backend.intelbras.com/sites/default/files/integration/lamina_tip-200-lite_e_tip-200.pdf https://www.vulncheck.com/advisories/intelbras-telefone-ip-tip200-200-lite-arbitrary-file-read-via-dumpconfigfile	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.