Inhandnetworks Inrouter302_firmware

9 CVEs affecting Inhandnetworks Inrouter302_firmware. Latest disclosed: 2023-01-12. Critical: 3, High: 4.

Top CVEs affecting Inhandnetworks Inrouter302_firmware
CVESeverityScorePublishedSummary
CVE-2023-22601Critical10.02023-01-12 InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerability CWE-330: Us…
CVE-2023-22600Critical10.02023-01-12 InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerability CWE-284: Im…
CVE-2022-25932Critical9.82022-11-09The firmware of InHand Networks InRouter302 V3.5.45 introduces fixes for TALOS-2022-1472 and TALOS-2022-1474. The fixes are incomplete. An attacker can still p…
CVE-2022-21182High8.82022-05-12A privilege escalation vulnerability exists in the router configuration import functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP re…
CVE-2022-21809High8.12022-05-12A file write vulnerability exists in the httpd upload.cgi functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lead to arb…
CVE-2023-22598High7.22023-01-12 InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerability CWE-78: Im…
CVE-2023-22599High7.02023-01-12 InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerability CWE-760: Us…
CVE-2023-22597Medium6.52023-01-12 InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-S-V2.3.0.r5542, contain vulnerability CWE-319: Cl…
CVE-2022-21238Medium6.12022-05-12A cross-site scripting (xss) vulnerability exists in the info.jsp functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted HTTP request can lea…