Vulnerabilidades en InHand Networks
43 resultadosCVE-2022-26085CRITICALAn OS command injection vulnerability exists in the httpd wlscan_ASP functionality of InHand Networks InRouter302 V3.5.4. A specially-crafteEPSS 12.7%CVE-2022-26042CRITICALAn OS command injection vulnerability exists in the daretools binary functionality of InHand Networks InRouter302 V3.5.4. A specially-crafteEPSS 8.6%CVE-2022-26075CRITICALAn OS command injection vulnerability exists in the console infactory_wlan functionality of InHand Networks InRouter302 V3.5.37. A speciallyEPSS 5.8%CVE-2022-26420CRITICALAn OS command injection vulnerability exists in the console infactory_port functionality of InHand Networks InRouter302 V3.5.37. A speciallyEPSS 5.8%CVE-2022-26007CRITICALAn OS command injection vulnerability exists in the console factory functionality of InHand Networks InRouter302 V3.5.4. A specially-craftedEPSS 5.3%CVE-2022-26518CRITICALAn OS command injection vulnerability exists in the console infactory_net functionality of InHand Networks InRouter302 V3.5.37. A specially-EPSS 4.8%CVE-2022-26782CRITICALMultiple improper input validation vulnerabilities exists in the libnvram.so nvram_import functionality of InHand Networks InRouter302 V3.5.EPSS 3.0%CVE-2022-26780CRITICALMultiple improper input validation vulnerabilities exists in the libnvram.so nvram_import functionality of InHand Networks InRouter302 V3.5.EPSS 3.0%CVE-2022-26002CRITICALA stack-based buffer overflow vulnerability exists in the console factory functionality of InHand Networks InRouter302 V3.5.4. A specially-cEPSS 3.0%CVE-2022-26781CRITICALMultiple improper input validation vulnerabilities exists in the libnvram.so nvram_import functionality of InHand Networks InRouter302 V3.5.EPSS 2.6%CVE-2021-38484CRITICALInHand Networks IR615 RouterEPSS 2.6%CVE-2022-25995CRITICALA command execution vulnerability exists in the console inhand functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted netwEPSS 2.5%CVE-2022-21182HIGHA privilege escalation vulnerability exists in the router configuration import functionality of InHand Networks InRouter302 V3.5.4. A speciaEPSS 1.8%CVE-2022-21809CRITICALA file write vulnerability exists in the httpd upload.cgi functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP requEPSS 1.7%CVE-2023-22598HIGH
InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerEPSS 1.6%CVE-2022-29888MEDIUMA leftover debug code vulnerability exists in the httpd port 4444 upload.cgi functionality of InHand Networks InRouter302 V3.5.45. A specialEPSS 1.5%CVE-2022-21238MEDIUMA cross-site scripting (xss) vulnerability exists in the info.jsp functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HEPSS 1.4%CVE-2022-24910HIGHA buffer overflow vulnerability exists in the httpd parse_ping_result API functionality of InHand Networks InRouter302 V3.5.4. A specially-cEPSS 1.3%CVE-2022-26510CRITICALA firmware update vulnerability exists in the iburn firmware checks functionality of InHand Networks InRouter302 V3.5.37. A specially-crafteEPSS 1.2%CVE-2021-38462CRITICALInHand Networks IR615 RouterEPSS 1.1%