Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
intelbras vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2019-20004
An issue exists on Intelbras IWR 3000N 1.8.7 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address, leading to complete control of the router.
Intelbras Iwr 3000n Firmware 1.8.7
890
VMScore
CVE-2018-10369
A Cross-site scripting (XSS) vulnerability exists on Intelbras Win 240 V1.1.0 devices. An attacker can change the Admin Password without a Login.
Intelbras Win 240 Firmware 1.1.0
668
VMScore
CVE-2017-14942
Intelbras WRN 150 devices allow remote malicious users to read the configuration file, and consequently bypass authentication, via a direct request for cgi-bin/DownloadCfg/RouterCfm.cfg containing an admin:language=pt cookie.
Intelbras Wrn 150 Firmware 1.0.1
1 Github repository
435
VMScore
CVE-2019-19516
Intelbras WRN 150 1.0.18 devices allow CSRF via GO=system_password.asp to the goform/SysToolChangePwd URI to change a password.
Intelbras Wrn 150 Firmware 1.0.18
1 EDB exploit
785
VMScore
CVE-2019-11415
An issue exists on Intelbras IWR 3000N 1.5.0 devices. A malformed login request allows remote malicious users to cause a denial of service (reboot), as demonstrated by JSON misparsing of the \""} string to v1/system/login.
Intelbras Iwr 3000n Firmware 1.5.0
1 EDB exploit
801
VMScore
CVE-2019-19007
Intelbras IWR 3000N 1.8.7 devices allow disclosure of the administrator login name and password because v1/system/user is mishandled, a related issue to CVE-2019-17600.
Intelbras Iwr 3000n Firmware 1.8.7
505
VMScore
CVE-2019-19142
Intelbras WRN240 devices do not require authentication to replace the firmware via a POST request to the incoming/Firmware.cfg URI.
Intelbras Wrn 240 Firmware 2.0.0
1 EDB exploit
NA
CVE-2022-24654
Authenticated stored cross-site scripting (XSS) vulnerability in "Field Server Address" field in INTELBRAS ATA 200 Firmware 74.19.10.21 allows malicious users to inject JavaScript code through a crafted payload.
Intelbras Ata 200 Firmware 74.19.10.21
1 Github repository
383
VMScore
CVE-2019-11414
An issue exists on Intelbras IWR 3000N 1.5.0 devices. When the administrator password is changed from a certain client IP address, administrative authorization remains available to any client at that IP address, leading to complete control of the router.
Intelbras Iwr 3000n Firmware 1.5.0
935
VMScore
CVE-2019-11416
A CSRF issue exists on Intelbras IWR 3000N 1.5.0 devices, leading to complete control of the router, as demonstrated by v1/system/user.
Intelbras Iwr 3000n Firmware 1.5.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5841
file upload
man-in-the-middle
arbitrary
CVE-2024-27801
CVE-2024-28020
CVE-2024-30080
CVE-2024-30069
CVE-2024-5843
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »