Lucene search
IcscertCVELIST:CVE-2021-38482HistoryOct 19, 2021 - 12:10 p.m.
CVE-2021-38482 InHand Networks IR615 Router
2021-10-1912:10:54
CWE-79
icscert
www.cve.org
1
inhand networks
ir615 router
website vulnerability
stored cross-site scripting
hijack sessions
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
AI Score
8.6
Confidence
High
EPSS
0.001
Percentile
22.7%
InHand Networks IR615 Router’s Versions 2.3.0.r4724 and 2.3.0.r4870 website used to control the router is vulnerable to stored cross-site scripting, which may allow an attacker to hijack sessions of users connected to the system.
CNA Affected
[
{
"product": "IR615 Router",
"vendor": "InHand Networks",
"versions": [
{
"status": "affected",
"version": "2.3.0.r4724 and 2.3.0.r4870"
}
]
}
]Related
prion
prion
Cross site scripting
2021-10-19 13:15:00
nvd
nvd
CVE-2021-38482
2021-10-19 13:15:11
cve
cve
CVE-2021-38482
2021-10-19 13:15:11
cnvd
cnvd
IR615 Router Cross-Site Scripting Vulnerability (CNVD-2021-82946)
2021-10-12 00:00:00
ics
ics
InHand Networks IR615 Router (Update A)
2021-11-30 12:00:00
CVSS3
8.7
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H
AI Score
8.6
Confidence
High
EPSS
0.001
Percentile
22.7%
Related for CVELIST:CVE-2021-38482