Lucene search
K

466 matches found

Cvelist
Cvelist
added 2021/10/19 12:10 p.m.13 views

CVE-2021-38470 InHand Networks IR615 Router

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to an attacker using a ping tool to inject commands into the device. This may allow the attacker to remotely run commands on behalf of the device...

9.1CVSS9.4AI score0.01091EPSS
Exploits0References1
CVE
CVE
added 2021/10/19 12:10 p.m.50 views

CVE-2021-38470

CVE-2021-38470 affects InHand Networks IR615 Router. The OS command injection vulnerability allows an attacker with network access to inject commands by using a ping tool, potentially enabling remote execution of commands on the device. Affected versions include 2.3.0.r4724 and 2.3.0.r4870 (publi...

9.1CVSS9.3AI score0.01091EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/10/19 12:10 p.m.17 views

CVE-2021-38474 InHand Networks IR615 Router

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 have has no account lockout policy configured for the login page of the product. This may allow an attacker to execute a brute-force password attack with no time limitation and without harming the normal operation of the user. Th...

6.3CVSS10AI score0.00661EPSS
Exploits0References1
CVE
CVE
added 2021/10/19 12:10 p.m.49 views

CVE-2021-38474

CVE-2021-38474 concerns InHand Networks IR615 Router. The vulnerability is in the login page where there is no account lockout policy, enabling brute-force attempts to gain valid credentials for the product interface. Affected versions, per public records, include IR615 Router versions 2.3.0.r472...

9.8CVSS8.3AI score0.00661EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2021/10/19 12:0 a.m.4 views

PT-2021-22160 · Inhand Networks · Inhand Networks Ir615 Router

Name of the Vulnerable Software and Affected Versions: InHand Networks IR615 Router versions 2.3.0.r4724 through 2.3.0.r4870 Description: The issue allows for self-registration of the affected product without any requirements to create an account, which may allow an attacker to have full control...

8.5CVSS8.5AI score0.00751EPSS
Exploits0References3
ICS
ICS
added 2021/10/07 12:0 a.m.121 views

InHand Networks IR615 Router (Update A)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: InHand Networks Equipment: IR615 Router Vulnerabilities: Improper Restriction of Rendered UI Layers or Frames, Improper Authorization, Cross-site Request Forgery, Inadequate Encryption Strength, Imprope...

9.8CVSS9.6AI score0.02597EPSS
Exploits0References5
Rows per page
Query Builder