Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-26063

An issue in Intelbras RX1500 v2.2.9 and RX3000 v1.0.11 allows unauthenticated attackers to execute arbitrary code via injecting a crafted payload into the ESSID name when creating a network.

Published

2025-07-31T19:15:28.773

Last Modified

2025-11-03T20:18:00.540

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

Weaknesses

Type: Secondary
CWE-77

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	intelbras	rx_1500_firmware	2.2.9	Yes
Hardware	intelbras	rx_1500	-	No
Operating System	intelbras	rx_3000_firmware	1.0.11	Yes
Hardware	intelbras	rx_3000	-	No

References

https://manuais.intelbras.com.br/manual-linha-rx/ChangeLogRX1500.html Release Notes ([email protected])
https://manuais.intelbras.com.br/manual-linha-rx/ChangeLogRX3000.html Release Notes ([email protected])
https://seclists.org/fulldisclosure/2025/Jul/14 Exploit, Mailing List, Third Party Advisory ([email protected])
http://seclists.org/fulldisclosure/2025/Jul/14 (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2025/Jul/26 (af854a3a-2127-422b-91ae-364da2661108)