Inhandnetworks

Ir302 Firmware

25 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2026-38707

  • EPSS 1.24%
  • Veröffentlicht 28.05.2026 00:00:00
  • Zuletzt bearbeitet 29.05.2026 14:08:41

A command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to...

9.8

CVE-2026-38704

  • EPSS 1.27%
  • Veröffentlicht 28.05.2026 00:00:00
  • Zuletzt bearbeitet 29.05.2026 14:08:07

A command injection vulnerability exists in the WireGuard VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerabilit...

9.8

CVE-2026-38703

  • EPSS 1.24%
  • Veröffentlicht 28.05.2026 00:00:00
  • Zuletzt bearbeitet 29.05.2026 14:09:03

A command injection vulnerability exists in the ZeroTier VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability...

9.8

CVE-2026-38702

  • EPSS 1.24%
  • Veröffentlicht 28.05.2026 00:00:00
  • Zuletzt bearbeitet 29.05.2026 14:09:18

A command injection vulnerability exists in the Admin Access feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability...

8.8

CVE-2022-30543

Exploit
  • EPSS 0.85%
  • Veröffentlicht 09.11.2022 18:15:14
  • Zuletzt bearbeitet 21.11.2024 07:02:54

A leftover debug code vulnerability exists in the console infct functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted series of network requests can lead to execution of privileged operations. An attacker can send a sequence of re...

8.1

CVE-2022-29888

Exploit
  • EPSS 1.49%
  • Veröffentlicht 09.11.2022 18:15:14
  • Zuletzt bearbeitet 21.11.2024 06:59:54

A leftover debug code vulnerability exists in the httpd port 4444 upload.cgi functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted HTTP request can lead to arbitrary file deletion. An attacker can send an HTTP request to trigger t...

6.5

CVE-2022-29481

Exploit
  • EPSS 0.77%
  • Veröffentlicht 09.11.2022 18:15:14
  • Zuletzt bearbeitet 21.11.2024 06:59:09

A leftover debug code vulnerability exists in the console nvram functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted series of network requests can lead to disabling security features. An attacker can send a sequence of requests ...

8.8

CVE-2022-28689

  • EPSS 0.91%
  • Veröffentlicht 09.11.2022 18:15:14
  • Zuletzt bearbeitet 21.11.2024 06:57:44

A leftover debug code vulnerability exists in the console support functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigge...

6.5

CVE-2022-26023

Exploit
  • EPSS 0.77%
  • Veröffentlicht 09.11.2022 18:15:13
  • Zuletzt bearbeitet 21.11.2024 06:53:19

A leftover debug code vulnerability exists in the console verify functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted series of network requests can lead to disabling security features. An attacker can send a sequence of requests...

8.8

CVE-2022-27172

Exploit
  • EPSS 1%
  • Veröffentlicht 12.05.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 06:55:20

A hard-coded password vulnerability exists in the console infactory functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted network request can lead to privileged operation execution. An attacker can send a sequence of requests to t...