CVE-2024-3160 – Intelbras HDCVI 1016 HTTP GET Request cap.js information disclosure

https://notcve.org/view.php?id=CVE-2024-3160

02 Apr 2024 — ** DISPUTED ** A vulnerability, which was classified as problematic, was found in Intelbras MHDX 1004, MHDX 1008, MHDX 1016, MHDX 5016, HDCVI 1008 and HDCVI 1016 up to 20240401. This affects an unknown part of the file /cap.js of the component HTTP GET Request Handler. The manipulation leads to information disclosure. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/netsecfish/intelbras_cap_js • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •