4 matches found
CVE-2022-25932
CVE-2022-25932 affects InHand Networks InRouter302 (v3.5.45). Talos reports that fixes for TALOS-2022-1472 and TALOS-2022-1474 were not effective, leaving a privilege escalation and an information disclosure vulnerability in the device. Vendor patching was issued around 2022-10-25, but evidence i...
CVE-2022-25932
creationtimestamp| type| source ---|---|--- 2022-10-28 11:12:28+00:00| seen| https://t.me/truesecator/3632 2022-11-09 20:36:26+00:00| seen| https://t.me/cibsecurity/52724...
Vulnerability Spotlight: Vulnerabilities in InHand router could give attackers access to console, delete files
Francesco Benvenuto of Cisco Talos discovered these vulnerabilities. Cisco Talos recently discovered several vulnerabilities in InHand Networks InRouter302 that could allow an attacker to access the routers console and make changes to the routers settings, including security protocols. The InRout...
InHand Networks InRouter302 Incorrect fixes privilege escalation vulnerability
Talos Vulnerability Report TALOS-2022-1523 InHand Networks InRouter302 Incorrect fixes privilege escalation vulnerability October 27, 2022 CVE Number CVE-2022-25932 SUMMARY The firmware of InHand Networks InRouter302 V3.5.45 introduces fixes for TALOS-2022-1472 and TALOS-2022-1474. The fixes are...