Anhax0R

**Name of the Vulnerable Software and Affected Versions** Intelbras TELEFONE IP TIP200/200 LITE version 60.0.75.29 **Description** The issue allows remote authenticated admins to read arbitrary files via the "/cgi-bin/cgiServer.exx" page parameter, which is vulnerable to absolute path traversal. In some cases, authentication can be achieved via the admin account with its default admin password. **Recommendations** For version 60.0.75.29, change the default admin password to prevent unauthorized access and consider restricting access to the "/cgi-bin/cgiServer.exx" page to minimize the risk of exploitation.