.. / CVE-2023-36144

Exploit for Intelbras Switch - Information Disclosure (CVE-2023-36144)

Description:

An authentication bypass in Intelbras Switch SG 2404 MR in firmware 1.00.54 allows an unauthenticated attacker to download the backup file of the device, exposing critical information about the device configuration.

Nuclei Template

View the template here CVE-2023-36144.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-36144.yaml
Copy

References:

https://github.com/leonardobg/CVE-2023-36144
http://intelbras.com
https://github.com/nomi-sec/PoC-in-GitHub
https://nvd.nist.gov/vuln/detail/CVE-2023-36144