CVE-2025-13187 PUBLISHED

A security vulnerability has been detected in Intelbras ICIP 2.0.20. Affected is an unknown function of the file /xml/sistema/acessodeusuario.xml. Such manipulation of the argument NomeUsuario/SenhaAcess leads to unprotected storage of credentials. The attack may be launched remotely. The exploit has been disclosed publicly and may be used.

• eldruin (VulDB User) reporter

• VDB-332475 | Intelbras ICIP acessodeusuario.xml credentials storage
• VDB-332475 | CTI Indicators (IOB, IOC, TTP, IOA)
• Submit #685522 | Intelbras ICIP 2.0.20 Unprotected Storage of Credentials
• https://www.notion.so/eldruin/Intelbras-ICIP-Plaintext-Admin-Credentials-Disclosure-29b27474cccb80ff943ff2776d03d7cd

• Unprotected Storage of Credentials CWE
• Credentials Management CWE