CSRF Vulnerability in Intelbras IWR 3000N Routers
CVE-2019-11416

8.8HIGH

Key Information:

Vendor
Intelbras
Status
Iwr 3000n Firmware
Vendor
CVE Published:
22 April 2019

Summary

A serious security flaw exists in Intelbras IWR 3000N routers running firmware version 1.5.0, allowing attackers to exploit a Cross-Site Request Forgery (CSRF) vulnerability. This security issue enables unauthorized users to gain complete control over the device, compromising the integrity and security of the network. Attackers can manipulate router settings and potentially lead to further exploits, making it essential for users to apply appropriate security measures.

References

https://1.337.zone/2019/04/08/intelbras-iwr-3000n-1-5-0-c...
x_refsource_MISC
https://www.exploit-db.com/exploits/46770/
exploitx_refsource_EXPLOIT-DB
http://packetstormsecurity.com/files/152682/Intelbras-IWR...
x_refsource_MISC

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.