4 matches found
CVE-2022-29888
A leftover debug code vulnerability exists in the httpd port 4444 upload.cgi functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted HTTP request can lead to arbitrary file deletion. An attacker can send an HTTP request to trigger this vulnerability...
CVE-2022-29888
InRouter302 InHand Networks vulnerability (CVE-2022-29888) : Cisco Talos reports a leftover debug code in the httpd on port 4444, specifically in upload.cgi (upload.cgi_input/output). A crafted HTTP POST can cause deletion of arbitrary files via manipulation of type/filename, triggered when the p...
Vulnerability Spotlight: Vulnerabilities in InHand router could give attackers access to console, delete files
Francesco Benvenuto of Cisco Talos discovered these vulnerabilities. Cisco Talos recently discovered several vulnerabilities in InHand Networks InRouter302 that could allow an attacker to access the routers console and make changes to the routers settings, including security protocols. The InRout...
InHand Networks InRouter302 httpd port 4444 upload.cgi leftover debug code vulnerability
Talos Vulnerability Report TALOS-2022-1522 InHand Networks InRouter302 httpd port 4444 upload.cgi leftover debug code vulnerability October 27, 2022 CVE Number CVE-2022-29888 SUMMARY A leftover debug code vulnerability exists in the httpd port 4444 upload.cgi functionality of InHand Networks...