CVE-2023-36144 Scanner

The Intelbras Switch SG 2404 MR is a network device used to connect multiple computers within a local area network (LAN). It is widely used in small to medium-sized business environments to facilitate the sharing of resources and data. This switch is known for its reliability and performance, offering a variety of features to support network management and security. The SG 2404 MR model, in particular, is designed to meet the needs of organizations requiring high-speed data transfer and efficient traffic management. The vulnerability in question affects the firmware version 1.00.54 of this product.

The identified vulnerability involves an authentication bypass in the Intelbras Switch SG 2404 MR's firmware, specifically version 1.00.54. This flaw allows an unauthenticated attacker to download the device's backup file without proper authorization. As a result, critical information regarding the device's configuration, including potentially sensitive data, can be exposed. This vulnerability poses a significant risk as it compromises the confidentiality of the device's configuration.

This vulnerability is exploited through a specific HTTP GET request to the '/cgi-bin/exportCfgwithpasswd' endpoint of the affected device. The request does not require authentication, allowing anyone with network access to retrieve the device's configuration file. This file contains sensitive details about the system's setup, such as network configuration, passwords, and possibly user information. The vulnerability is particularly concerning because it bypasses the standard authentication mechanisms meant to protect such sensitive information.

If exploited, this vulnerability can lead to several adverse outcomes. An attacker could gain access to sensitive network configuration details, leading to further attacks or unauthorized access to the network. This exposure could result in data breaches, unauthorized modifications to the network setup, and potentially disrupt network operations. The ability to download the configuration file without authentication poses a significant risk to the confidentiality and integrity of the network.

By joining the securityforeveryone platform, users gain access to advanced scanning capabilities that can detect vulnerabilities like the one in Intelbras Switch SG 2404 MR Firmware. Our platform offers comprehensive cyber threat exposure management, using cutting-edge technology to identify and report vulnerabilities, configuration errors, and cybersecurity weaknesses. Members benefit from real-time insights into their digital assets' security posture, allowing them to proactively address vulnerabilities and enhance their cyber defenses. Secure your network today and safeguard your digital assets with our expert-driven security assessments.

References

• https://nvd.nist.gov/vuln/detail/CVE-2023-36144
• https://github.com/leonardobg/CVE-2023-36144
• http://intelbras.com
• https://github.com/nomi-sec/PoC-in-GitHub