Vulnerabilities > Inhandnetworks > Ir615 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2021-10-19 CVE-2021-38462 Weak Password Requirements vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870
InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 does not enforce an efficient password policy.
network
low complexity
inhandnetworks CWE-521
7.5
2021-10-19 CVE-2021-38486 Missing Authorization vulnerability in Inhandnetworks Ir615 Firmware 2.3.0.R4724/2.3.0.R4870
InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 cloud portal allows for self-registration of the affected product without any requirements to create an account, which may allow an attacker to have full control over the product and execute code within the internal network to which the product is connected.
network
high complexity
inhandnetworks CWE-862
8.5