CVE-2019-17600

Intelbras IWR 1000N 1.6.4 devices allows disclosure of the administrator login name and password because v1/system/user is mishandled.

Published : 2019-10-15 14:15 Updated : 2019-10-15 20:56

10.0
CVSS Score More info
Score 10.0 / 10
10.0
Vendor Product Version URI
Intelbras Iwr 1000n Firmware 1.6.4 cpe:/o:intelbras:iwr_1000n_firmware:1.6.4
  1. Intelbras (1) Search CVE
    1. Iwr 1000n Firmware (1) Search CVE
      1. 1.6.4

CWE

ID Name Description Links
CWE-352 Cross-Site Request Forgery (CSRF) The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request. CVE

History of changes

Date Event
2019-10-15 20:56
2019-10-15 14:15

New CVE