Information disclosure

The firmware of InHand Networks InRouter302 V3.5.45 introduces fixes for TALOS-2022-1472 and TALOS-2022-1474. The fixes are incomplete. An attacker can still perform, respectively, a privilege escalation and an information disclosure vulnerability...

Design/Logic Flaw

A leftover debug code vulnerability exists in the httpd port 4444 upload.cgi functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted HTTP request can lead to arbitrary file deletion. An attacker can send an HTTP request to trigger this vulnerability...

Code injection

A leftover debug code vulnerability exists in the console infct functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted series of network requests can lead to execution of privileged operations. An attacker can send a sequence of requests to trigger this vulnerability...

CVE-2022-29888

A leftover debug code vulnerability exists in the httpd port 4444 upload.cgi functionality of InHand Networks InRouter302 V3.5.45. A specially-crafted HTTP request can lead to arbitrary file deletion. An attacker can send an HTTP request to trigger this vulnerability...

CVE-2022-29481

The CVE-2022-29481 issue affects InHand Networks InRouter302 (V3.5.45). TALOS details a leftover debug code in the router’s console nvram function that can be accessed via the device’s telnet/SSHD console after valid credentials are provided. An attacker could use the hidden nvram commands to rea...

CVE-2022-28689

CVE-2022-28689 affects InHand Networks InRouter302 (v3.5.45). Talos reports a console debug leftover that allows arbitrary command execution when an attacker issues a crafted sequence of requests to the device’s console, enabling a hidden or legacy command path (e.g., a leftover “support” functio...

CVE-2022-26023

The InHand Networks InRouter302 (version 3.5.45) is affected by TALOS-2022-1520: a leftover debug code vulnerability in the console verify function that can disable firmware signature verification. Attackers can trigger this via a crafted sequence of requests or using the console verify command (...

CVE-2022-25932

CVE-2022-25932 affects InHand Networks InRouter302 (v3.5.45). Talos reports that fixes for TALOS-2022-1472 and TALOS-2022-1474 were not effective, leaving a privilege escalation and an information disclosure vulnerability in the device. Vendor patching was issued around 2022-10-25, but evidence i...

CVE-2022-25932

The firmware of InHand Networks InRouter302 V3.5.45 introduces fixes for TALOS-2022-1472 and TALOS-2022-1474. The fixes are incomplete. An attacker can still perform, respectively, a privilege escalation and an information disclosure vulnerability...