CVE-2019-11415

Name of the Vulnerable Software and Affected Versions Intelbras IWR 3000N version 1.5.0

Description An issue allows remote attackers to cause a denial of service, resulting in a device reboot. This can be achieved by sending a malformed login request, specifically by misparsing the " string to the /api/v1/system/login API endpoint.

Recommendations For Intelbras IWR 3000N version 1.5.0, as a temporary workaround, consider restricting access to the /api/v1/system/login API endpoint until a patch is available. Additionally, avoid using malformed JSON strings in the login request to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.