Credential Disclosure Vulnerability in Intelbras IWR 1000N Devices
CVE-2019-17600
9.8CRITICAL
What is CVE-2019-17600?
The Intelbras IWR 1000N devices, specifically version 1.6.4, contain a vulnerability that enables unauthorized disclosure of the administrator's login credentials. This issue arises due to improper handling of requests to the /v1/system/user endpoint, which can be exploited to expose sensitive information, including usernames and passwords. Organizations utilizing these devices should take immediate action to secure their systems against potential unauthorized access.