CSRF Vulnerability in Intelbras IWR 3000N Routers
CVE-2019-19995

8.8HIGH

Key Information:

Vendor
Intelbras
Vendor
CVE Published:
26 December 2019

Summary

A Cross-Site Request Forgery (CSRF) vulnerability was identified in Intelbras IWR 3000N devices, enabling unauthorized actions due to inadequate validation of requests. This flaw allows an attacker to exploit the vulnerable router, gaining complete control over its settings and potentially compromising the entire network. Victims can be misled into initiating malicious requests without their knowledge, posing significant risks to network security.

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.