Home

Description

Intelbras IWR 3000N 1.9.8 exposes the Wi-Fi password in plaintext via the /api/wireless endpoint. Any unauthenticated user on the local network can directly obtain the Wi-Fi network password by querying this endpoint.

PUBLISHED Reserved 2025-08-16 | Published 2025-09-10 | Updated 2025-09-10 | Assigner mitre

References

www.intelbras.com/...o/roteador-wireless-n-300mbps-iwr-3000n

medium.com/...assword-disclosure-cve-2025-55976-7cdac7770413

cve.org (CVE-2025-55976)

nvd.nist.gov (CVE-2025-55976)

Download JSON