CVE-2026-36438

Vulnerability

The Intelbras VIP-1230-D-G4 (firmware version V2.800.00IB00C.0.T) exposes a password reset functionality under the /OutsideCmd endpoint. This endpoint does not properly validate or sanitize requests, allowing a remote attacker to obtain sensitive information such as user credentials or session tokens. The issue exists in the default configuration and requires no authentication. [1][2]

Exploitation

An attacker with network access to the camera can send a crafted HTTP request to the /OutsideCmd endpoint. The exact payload is not fully disclosed, but it likely triggers the password reset flow and intercepts the response containing sensitive data. No user interaction or prior authentication is needed. [2]

Impact

Successful exploitation leads to information disclosure, specifically access to sensitive account or session information. This could allow an attacker to gain unauthorized access to the camera, potentially compromising the confidentiality and integrity of video feeds or device settings. The privilege level obtained is administrative if credentials are leaked. [2]

Mitigation

Intelbras has not yet released a fixed firmware version. Users should monitor the vendor's support page [1] for updates. As a temporary workaround, restrict network access to the camera's web interface to trusted hosts only. This vulnerability is not known to be listed in CISA's KEV as of publication. [1][2]