CVE-2019-17600: CSRF
First published: Tue Oct 15 2019(Updated: )
Intelbras IWR 1000N 1.6.4 devices allow disclosure of the administrator login name and password because v1/system/user is mishandled.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Intelbras Iwr 1000n Firmware | =1.6.4 | |
| Intelbras IWR 1000N |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this Intelbras IWR 1000N issue?
The vulnerability ID for this issue is CVE-2019-17600.
What is the severity of CVE-2019-17600?
The severity of CVE-2019-17600 is critical with a CVSS score of 9.8.
How does CVE-2019-17600 affect Intelbras IWR 1000N devices?
CVE-2019-17600 allows for the disclosure of the administrator login name and password on affected Intelbras IWR 1000N devices due to mishandling of the v1/system/user endpoint.
How can I check if my Intelbras IWR 1000N device is affected by CVE-2019-17600?
If you have an Intelbras IWR 1000N device with firmware version 1.6.4, it is affected by CVE-2019-17600.
Is there a fix available for CVE-2019-17600?
To fix CVE-2019-17600, Intelbras has released a firmware update that addresses the mishandling of the v1/system/user endpoint. Please update your device to the latest firmware version.
- collector/nvd-index
- agent/softwarecombine
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/severity
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/intelbras
- canonical/intelbras iwr 1000n firmware
- version/intelbras iwr 1000n firmware/1.6.4
- canonical/intelbras iwr 1000n