CVE-2019-11415

Published: Apr 22, 2019Modified: Nov 21, 2024

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

An issue was discovered on Intelbras IWR 3000N 1.5.0 devices. A malformed login request allows remote attackers to cause a denial of service (reboot), as demonstrated by JSON misparsing of the \""} string to v1/system/login.

Affected (1)

Products: Intelbras: Iwr 3000n Firmware

Intelbras

1 product

Iwr 3000n Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Intelbras Iwr 3000n Firmware	Version 1.5.0

Running on/with	Platform Versions
Intelbras Iwr 3000n	All versions

References (6)

http://packetstormsecurity.com/files/152680/Intelbras-IWR-3000N-Denial-Of-Service.html

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

https://1.337.zone/2019/04/08/intelbras-iwr-3000n-any-version-dos-on-malformed-login-request/

Source: cve@mitre.org

Third Party Advisory

https://www.exploit-db.com/exploits/46768/

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/152680/Intelbras-IWR-3000N-Denial-Of-Service.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

https://1.337.zone/2019/04/08/intelbras-iwr-3000n-any-version-dos-on-malformed-login-request/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.exploit-db.com/exploits/46768/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.