CVE-2025-26062

An access control issue in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows unauthenticated attackers to access the router's settings file and obtain potentially sensitive information from the current settings.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://manuais.intelbras.com.br/manual-linha-rx/ChangeLogRX1500.html	Release Notes
https://manuais.intelbras.com.br/manual-linha-rx/ChangeLogRX3000.html	Release Notes
https://seclists.org/fulldisclosure/2025/Jul/14	Exploit Mailing List Third Party Advisory
http://seclists.org/fulldisclosure/2025/Jul/14
http://seclists.org/fulldisclosure/2025/Jul/26

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:intelbras:rx_1500_firmware:2.2.9:*:*:*:*:*:*:*

cpe:2.3:h:intelbras:rx_1500:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:intelbras:rx_3000_firmware:1.0.11:*:*:*:*:*:*:*

cpe:2.3:h:intelbras:rx_3000:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2025-07-31 19:15

Updated : 2025-11-03 20:18

NVD link : CVE-2025-26062

Mitre link : CVE-2025-26062

CVE.ORG link : CVE-2025-26062

JSON object : View

Products Affected

intelbras

rx_3000_firmware
rx_3000
rx_1500
rx_1500_firmware

CWE

CWE-284

Improper Access Control

{"id": "CVE-2025-26062", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2025-07-31T19:15:28.610", "references": [{"url": "https://manuais.intelbras.com.br/manual-linha-rx/ChangeLogRX1500.html", "tags": ["Release Notes"], "source": "cve@mitre.org"}, {"url": "https://manuais.intelbras.com.br/manual-linha-rx/ChangeLogRX3000.html", "tags": ["Release Notes"], "source": "cve@mitre.org"}, {"url": "https://seclists.org/fulldisclosure/2025/Jul/14", "tags": ["Exploit", "Mailing List", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://seclists.org/fulldisclosure/2025/Jul/14", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://seclists.org/fulldisclosure/2025/Jul/26", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "An access control issue in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows unauthenticated attackers to access the router's settings file and obtain potentially sensitive information from the current settings."}, {"lang": "es", "value": "Un problema de control de acceso en Intelbras RX1500 v2.2.9 y RX3000 v1.0.11 permite a atacantes no autenticados acceder al archivo de configuraci\u00f3n del enrutador y obtener informaci\u00f3n potencialmente confidencial de la configuraci\u00f3n actual."}], "lastModified": "2025-11-03T20:18:00.380", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:intelbras:rx_1500_firmware:2.2.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ECB8C40B-084E-4858-AA0C-966E3D86B100"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:intelbras:rx_1500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4B3E00F0-4F8F-4A2F-A553-74B0C682EF3C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:intelbras:rx_3000_firmware:1.0.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E2495F3-D96B-475D-BC50-F75324036A66"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:intelbras:rx_3000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A807025F-C981-4DED-9F75-A2F02E63416E"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}