CRITICAL🇵🇱 Wersja polska

CVE-2022-25932

CVSS 9.8v3.1pub. 2022-11-09upd. 2024-11-21

The firmware of InHand Networks InRouter302 V3.5.45 introduces fixes for TALOS-2022-1472 and TALOS-2022-1474. The fixes are incomplete. An attacker can still perform, respectively, a privilege escalation and an information disclosure vulnerability.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Inhandnetworks Inrouter302

    HW
    Inhandnetworks
    wszystkie wersje
  • Inhandnetworks Inrouter302 Firmware

    OS
    Inhandnetworks
    < 3.5.56
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPE
CWE
References

Related vulnerabilities

CVE-2023-22600CRITICAL10.0ten sam produkt

InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-...

CVE-2023-22601CRITICAL10.0ten sam produkt

InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-...

CVE-2023-22598HIGH7.2ten sam produkt

InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-...

CVE-2023-22599HIGH7.0ten sam produkt

InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version InRouter6XX-...

CVE-2022-21182HIGH8.8ten sam produkt

A privilege escalation vulnerability exists in the router configuration import functionality of InHand Network...