Intelbras InControl Information Disclosure Vulnerability

An information disclosure vulnerability has been identified in Intelbras InControl version 2.21.60.9. This issue arises from an unknown processing flaw in the JSON endpoint at '/v1/operador/', which allows for the unauthorized exposure of sensitive user information. The vulnerability can be exploited remotely, although the attack's complexity is considered high. Publicly disclosed exploitation details indicate that the vulnerability could be used to access hashed password data of various user roles, including 'Admin' and 'Recepcionista', under certain conditions.

Impact

Exploitation of this vulnerability allows for unauthorized access to sensitive user information, including hashed passwords, which could potentially be used for further attacks, such as password cracking or unauthorized account access.

Reproduction

To reproduce this vulnerability, send a GET request to the '/v1/operador/' endpoint. Include a JWT authorization token in the request headers. The response will contain a JSON object with user details, including hashed passwords. This can be done using a user account with 'Recepcionista' privileges, which, despite lacking permission to view this information through the application's frontend, can still access it via the API endpoint.

Remediation

Users are advised to upgrade to a version of Intelbras InControl that is not affected by this vulnerability.