Vulnerabilities > Inhandnetworks > Ir302 Firmware > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-09 | CVE-2022-26023 | Unspecified vulnerability in Inhandnetworks Ir302 Firmware 3.5.45 A leftover debug code vulnerability exists in the console verify functionality of InHand Networks InRouter302 V3.5.45. | 6.5 |
| 2022-11-09 | CVE-2022-29481 | Unspecified vulnerability in Inhandnetworks Ir302 Firmware 3.5.45 A leftover debug code vulnerability exists in the console nvram functionality of InHand Networks InRouter302 V3.5.45. | 6.5 |
| 2022-05-12 | CVE-2022-24910 | Classic Buffer Overflow vulnerability in Inhandnetworks Ir302 Firmware A buffer overflow vulnerability exists in the httpd parse_ping_result API functionality of InHand Networks InRouter302 V3.5.4. | 4.6 |
| 2022-05-12 | CVE-2022-25172 | Incorrect Permission Assignment for Critical Resource vulnerability in Inhandnetworks Ir302 Firmware An information disclosure vulnerability exists in the web interface session cookie functionality of InHand Networks InRouter302 V3.5.4. | 6.1 |
| 2022-05-12 | CVE-2022-26002 | Out-of-bounds Write vulnerability in Inhandnetworks Ir302 Firmware 3.5.4 A stack-based buffer overflow vulnerability exists in the console factory functionality of InHand Networks InRouter302 V3.5.4. | 6.5 |
| 2022-05-12 | CVE-2022-26020 | Use of Hard-coded Credentials vulnerability in Inhandnetworks Ir302 Firmware 3.5.37 An information disclosure vulnerability exists in the router configuration export functionality of InHand Networks InRouter302 V3.5.4. | 6.5 |
| 2022-05-12 | CVE-2022-26042 | OS Command Injection vulnerability in Inhandnetworks Ir302 Firmware 3.5.37 An OS command injection vulnerability exists in the daretools binary functionality of InHand Networks InRouter302 V3.5.4. | 6.5 |
| 2022-05-12 | CVE-2022-26085 | OS Command Injection vulnerability in Inhandnetworks Ir302 Firmware 3.5.37 An OS command injection vulnerability exists in the httpd wlscan_ASP functionality of InHand Networks InRouter302 V3.5.4. | 6.5 |
| 2022-05-12 | CVE-2022-26510 | Improper Verification of Cryptographic Signature vulnerability in Inhandnetworks Ir302 Firmware 3.5.37 A firmware update vulnerability exists in the iburn firmware checks functionality of InHand Networks InRouter302 V3.5.37. | 4.0 |
| 2022-05-12 | CVE-2022-26518 | OS Command Injection vulnerability in Inhandnetworks Ir302 Firmware 3.5.37 An OS command injection vulnerability exists in the console infactory_net functionality of InHand Networks InRouter302 V3.5.37. | 6.5 |