CVE-2019-11414

Severity CVSS v4.0:
Pending analysis
Type:
CWE-640 Weak Password Recovery Mechanism for Forgotten Password
Publication date:
22/04/2019
Last modified:
22/04/2019

Description

An issue was discovered on Intelbras IWR 3000N 1.5.0 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address, leading to complete control of the router.

Vulnerable products and versions

CPE From Up to
cpe:2.3:o:intelbras:iwr_3000n_firmware:1.5.0:*:*:*:*:*:*:*
cpe:2.3:h:intelbras:iwr_3000n:-:*:*:*:*:*:*:*