CRITICAL🇵🇱 Wersja polska

CVE-2026-38704

CVSS 9.8v3.1pub. 2026-05-28upd. 2026-05-29

A command injection vulnerability exists in the WireGuard VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target devices.

🤖 AI Analysis
How it works

The vulnerability classified as CWE-77 (Improper Neutralization of Special Elements used in a Command) is due to the lack of proper validation or filtering of input data passed to the WireGuard VPN function in InHand Networks device firmware. An attacker can prepare a malicious payload containing system commands that will be executed directly by the device's operating system. The attack vector is network-based (AV:N), requires no authentication (PR:N) and no user interaction (UI:N), making it particularly dangerous in production environments.

Impact

Successful exploitation of the vulnerability allows an attacker to gain ROOT privileges on a remote device, meaning complete takeover of control — ability to read and modify configuration, eavesdrop on network traffic, install malicious software, and use the device as an entry point to the internal network.

Mitigation & patch

Apply patches available from the manufacturer in accordance with the references (InHand PSA-2026-05). It is recommended to immediately implement firmware updates and restrict access to device management interfaces only to trusted IP addresses. Until the update is applied, consider disabling the WireGuard VPN function if it is not essential.

Who is affected

InHand Networks IR302 firmware V3.5.108 and earlier, IR305 firmware V1.0.118 and earlier, IR315 firmware V1.0.118 and earlier, IR615 firmware V1.0.118 and earlier.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Inhandnetworks Ir302

    HW
    Inhandnetworks
    wszystkie wersje
  • Inhandnetworks Ir302 Firmware

    OS
    Inhandnetworks
    < 3.5.112
  • Inhandnetworks Ir305

    HW
    Inhandnetworks
    wszystkie wersje
  • Inhandnetworks Ir305 Firmware

    OS
    Inhandnetworks
    < 1.0.121
  • Inhandnetworks Ir315

    HW
    Inhandnetworks
    wszystkie wersje
  • Inhandnetworks Ir315 Firmware

    OS
    Inhandnetworks
    < 1.0.121
  • Inhandnetworks Ir615

    HW
    Inhandnetworks
    wszystkie wersje
  • Inhandnetworks Ir615 Firmware

    OS
    Inhandnetworks
    < 1.0.121
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
VPN
CWE
References

Related vulnerabilities

CVE-2026-38707CRITICAL9.8PL ✓ten sam produkt

Command injection w funkcji IPSec VPN urządzeń InHand Networks — dostęp ROOT

CVE-2026-38703CRITICAL9.8PL ✓ten sam produkt

Command injection w funkcji ZeroTier VPN urządzeń InHand Networks

CVE-2026-38702CRITICAL9.8PL ✓ten sam produkt

Command injection w firmware InHand Networks IR302/IR315/IR615 — dostęp ROOT

CVE-2021-38480CRITICAL9.6ten sam produkt

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to cross-site request forge...

CVE-2021-38470CRITICAL9.1ten sam produkt

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to an attacker using a ping...