Vulnerabilities > Inhandnetworks > Inrouter 900 Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-04-10 CVE-2022-27268 OS Command Injection vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the component get_cgi_from_memory.
network
low complexity
inhandnetworks CWE-78
critical
 9.8
9.8
2022-04-10 CVE-2022-27269 OS Command Injection vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the component config_ovpn.
network
low complexity
inhandnetworks CWE-78
critical
 9.8
9.8
2022-04-10 CVE-2022-27270 OS Command Injection vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the component ipsec_secrets.
network
low complexity
inhandnetworks CWE-78
critical
 9.8
9.8
2022-04-10 CVE-2022-27271 OS Command Injection vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the component python-lib.
network
low complexity
inhandnetworks CWE-78
critical
 9.8
9.8
2022-04-10 CVE-2022-27272 OS Command Injection vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the function sub_1791C.
network
low complexity
inhandnetworks CWE-78
critical
 9.8
9.8
2022-04-10 CVE-2022-27273 OS Command Injection vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the function sub_12168.
network
low complexity
inhandnetworks CWE-78
critical
 9.8
9.8
2022-04-10 CVE-2022-27274 OS Command Injection vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the function sub_12028.
network
low complexity
inhandnetworks CWE-78
critical
 9.8
9.8
2022-04-10 CVE-2022-27275 OS Command Injection vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the function sub_122D0.
network
low complexity
inhandnetworks CWE-78
critical
 9.8
9.8
2022-04-10 CVE-2022-27276 OS Command Injection vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the function sub_10F2C.
network
low complexity
inhandnetworks CWE-78
critical
 9.8
9.8
2022-04-10 CVE-2022-27277 Path Traversal vulnerability in Inhandnetworks Inrouter 900 Firmware
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file deletion vulnerability via the function sub_17C08.
network
low complexity
inhandnetworks CWE-22
critical
 9.1
9.1