Description
An issue was discovered on Intelbras IWR 3000N 1.5.0 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address, leading to complete control of the router.
Scores
CVSS v3
8.8
EPSS
0.0043
EPSS Percentile
62.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-640
Status
published
Products (1)
intelbras/iwr_3000n_firmware
1.5.0
Published
Apr 22, 2019
Tracked Since
Feb 18, 2026