3 matches found
CVE-2022-21182
CVE-2022-21182 describes a privilege-escalation in InHand Networks InRouter302 (v3.5.4). Talos reports the issue in the router configuration import flow (upload.cgi): a non-privileged user can import a configuration and gain privileged credentials, reflecting CWE-284 (improper access control). CV...
CVE-2022-21182
A privilege escalation vulnerability exists in the router configuration import functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lead to increased privileges. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2022-21182
A privilege escalation vulnerability exists in the router configuration import functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lead to increased privileges. An attacker can send an HTTP request to trigger this vulnerability...