CVE-2019-17600

CRITICAL

Intelbras IWR 1000N 1.6.4 - Information Disclosure via v1/system/user Endpoint

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-17600. PoCs published by Social Engineering Neo.

AI-analyzed exploit summary This PoC exploits a CSRF vulnerability in Intelbras IWR 3000N routers (CVE-2019-11416) to retrieve administrator credentials via an unauthenticated API endpoint. It leverages jQuery to send a GET request to the router's API, exposing sensitive information.

Description

Intelbras IWR 1000N 1.6.4 devices allow disclosure of the administrator login name and password because v1/system/user is mishandled.

Exploits (1)

exploitdb WORKING POC

by Social Engineering Neo · htmlwebappshardware

https://www.exploit-db.com/exploits/46770

View Code ZIP pw:eip

This PoC exploits a CSRF vulnerability in Intelbras IWR 3000N routers (CVE-2019-11416) to retrieve administrator credentials via an unauthenticated API endpoint. It leverages jQuery to send a GET request to the router's API, exposing sensitive information.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Intelbras IWR 3000N firmware versions before 1.8.7_0

No auth needed

Prerequisites: Victim must be authenticated on the router's network · Attacker must trick victim into clicking the exploit button

MITRE ATT&CK

T1189 - Drive-by Compromise T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Exploit, Third Party Advisory x_refsource_misc

https://pastebin.com/QbhVPyXm

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

https://www.exploit-db.com/exploits/46770/

Scores

CVSS v3 9.8

EPSS 0.0019

EPSS Percentile 41.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-352

Status published

Products (1)

intelbras/iwr_1000n_firmware 1.6.4

Published Oct 15, 2019

Tracked Since Feb 18, 2026