Inhandnetworks

Ir302 Firmware

21 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2022-30543

Exploit
  • EPSS 0.56%
  • Veröffentlicht 09.11.2022 18:15:14
  • Zuletzt bearbeitet 21.11.2024 07:02:54

A leftover debug code vulnerability exists in the console infct functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted series of network requests can lead to execution of privileged operations. An attacker can send a sequence of re...

8.1

CVE-2022-29888

Exploit
  • EPSS 1.54%
  • Veröffentlicht 09.11.2022 18:15:14
  • Zuletzt bearbeitet 21.11.2024 06:59:54

A leftover debug code vulnerability exists in the httpd port 4444 upload.cgi functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted HTTP request can lead to arbitrary file deletion. An attacker can send an HTTP request to trigger t...

6.5

CVE-2022-29481

Exploit
  • EPSS 0.38%
  • Veröffentlicht 09.11.2022 18:15:14
  • Zuletzt bearbeitet 21.11.2024 06:59:09

A leftover debug code vulnerability exists in the console nvram functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted series of network requests can lead to disabling security features. An attacker can send a sequence of requests ...

8.8

CVE-2022-28689

  • EPSS 0.54%
  • Veröffentlicht 09.11.2022 18:15:14
  • Zuletzt bearbeitet 21.11.2024 06:57:44

A leftover debug code vulnerability exists in the console support functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted network request can lead to arbitrary command execution. An attacker can send a sequence of requests to trigge...

6.5

CVE-2022-26023

Exploit
  • EPSS 0.33%
  • Veröffentlicht 09.11.2022 18:15:13
  • Zuletzt bearbeitet 21.11.2024 06:53:19

A leftover debug code vulnerability exists in the console verify functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted series of network requests can lead to disabling security features. An attacker can send a sequence of requests...

8.8

CVE-2022-27172

Exploit
  • EPSS 0.37%
  • Veröffentlicht 12.05.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 06:55:20

A hard-coded password vulnerability exists in the console infactory functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted network request can lead to privileged operation execution. An attacker can send a sequence of requests to t...

8.8

CVE-2022-26782

Exploit
  • EPSS 1.26%
  • Veröffentlicht 12.05.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 06:54:29

Multiple improper input validation vulnerabilities exists in the libnvram.so nvram_import functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted file can lead to remote code execution. An attacker can send a sequence of requests to ...

8.8

CVE-2022-26781

Exploit
  • EPSS 0.88%
  • Veröffentlicht 12.05.2022 17:15:11
  • Zuletzt bearbeitet 21.11.2024 06:54:29

Multiple improper input validation vulnerabilities exists in the libnvram.so nvram_import functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted file can lead to remote code execution. An attacker can send a sequence of requests to ...

6.5

CVE-2022-26510

Exploit
  • EPSS 0.49%
  • Veröffentlicht 12.05.2022 17:15:10
  • Zuletzt bearbeitet 21.11.2024 06:54:05

A firmware update vulnerability exists in the iburn firmware checks functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted HTTP request can lead to firmware update. An attacker can send a sequence of requests to trigger this vulner...

8.8

CVE-2022-26780

Exploit
  • EPSS 0.91%
  • Veröffentlicht 12.05.2022 17:15:10
  • Zuletzt bearbeitet 21.11.2024 06:54:29

Multiple improper input validation vulnerabilities exists in the libnvram.so nvram_import functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted file can lead to remote code execution. An attacker can send a sequence of requests to ...