CVE-2025-50404
Published: 01 July 2025
Summary
CVE-2025-50404 is a medium-severity Integer Overflow or Wraparound (CWE-190) vulnerability in Intelbras Rx 1500 Firmware. Its CVSS base score is 5.3 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 36.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-20529
Vulnerability details
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent function incorrectly uses the int type when processing the "command" field of the http header, causing the array to cross the boundary and overwrite other fields in…
more
the array.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The integer overflow in the websReadEvent function of the Intelbras RX1500 Router's web interface allows boundary-crossing array overwrites via crafted HTTP 'command' headers, enabling remote exploitation of a public-facing application.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.