466 matches found
Remote code execution
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the function sub12028. This vulnerability is triggered via a crafted packet...
Remote code execution
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the component ipsecsecrets. This vulnerability is triggered via a crafted packet...
Remote code execution
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the component configovpn. This vulnerability is triggered via a crafted packet...
Arbitrary file deletion
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file deletion vulnerability via the function sub17C08...
Cross site scripting
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a stored cross-site scripting XSS vulnerability via the webexec parameter at /apply.cgi...
Remote code execution
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the function sub122D0. This vulnerability is triggered via a crafted packet...
Design/Logic Flaw
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the component getcgifrommemory. This vulnerability is triggered via a crafted packet...
CVE-2022-27269
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the component configovpn. This vulnerability is triggered via a crafted packet...
CVE-2022-27269
InHand Networks InRouter 900 Industrial 4G Router has a remote code execution (RCE) vulnerability in the config_ovpn component. A crafted packet can trigger the issue, affecting versions prior to v1.0.0.r11700. PT-2022-18342 confirms the vulnerability and recommends updating to v1.0.0.r11700 or l...
CVE-2022-27268
InHand Networks InRouter 900 Industrial 4G Router is affected. Versions prior to 1.0.0.r11700 contain a remote code execution (RCE) vulnerability in the get_cgi_from_memory component, triggerable by a crafted packet. The issue is documented with a clear affected-version range and remediation guid...
CVE-2022-27268
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the component getcgifrommemory. This vulnerability is triggered via a crafted packet...
CVE-2022-27270
CVE-2022-27270 affects InHand Networks InRouter 900 Industrial 4G Router before version 1.0.0.r11700. The vulnerability is an RCE via the ipsec_secrets component, triggered by a crafted packet. Affected firmware versions are prior to 1.0.0.r11700; the recommended remediation is to upgrade to 1.0....
CVE-2022-27270
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the component ipsecsecrets. This vulnerability is triggered via a crafted packet...
CVE-2022-27271
CVE-2022-27271 affects InHand Networks InRouter 900 Industrial 4G Router. The vulnerability is an RCE via the python-lib component, triggered by a crafted packet. Affected firmware versions are prior to v1.0.0.r11700. Public sources in the connected documents (Red Hat, PT-Platform) corroborate th...
CVE-2022-27271
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the component python-lib. This vulnerability is triggered via a crafted packet...
CVE-2022-27273
InHand Networks InRouter 900 Industrial 4G Router is affected by CVE-2022-27273. The vulnerability allows remote code execution via the function sub_12168 when processing a crafted packet, affecting versions prior to 1.0.0.r11700. Remediation is to update to version 1.0.0.r11700 or later. Other s...
CVE-2022-27273
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the function sub12168. This vulnerability is triggered via a crafted packet...
CVE-2022-27272
CVE-2022-27272 affects InHand Networks InRouter 900 Industrial 4G Router up to version v1.0.0.r11700. The vulnerability is an RCE triggered by a crafted packet via function sub_1791C. Affected component is the router’s firmware; impact is remote code execution with potential full compromise. Reme...
CVE-2022-27272
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the function sub1791C. This vulnerability is triggered via a crafted packet...
CVE-2022-27274
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution RCE vulnerability via the function sub12028. This vulnerability is triggered via a crafted packet...