Login
Start Free Trial
Research Center
IR615 Firmware Research Center
IR

IR615 Firmware

By Inhandnetworks

Analyzed by TOPIA

Versions 2

CVE 13

🔥 CVE-2021-38474

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 have has no account lockout policy configured for the login page of the product. T...

9.8
CVSS
a year ago
Act Now

🔥 CVE-2021-38462

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 does not enforce an efficient password policy. This may allow an attacker with obt...

9.8
CVSS
a year ago
Act Now

🔥 CVE-2021-38478

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to an attacker using a traceroute tool to inject commands into the...

9.1
CVSS
a year ago
Act Now

🔥 CVE-2021-38470

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to an attacker using a ping tool to inject commands into the device...

9.1
CVSS
a year ago
Act Now

🔥 CVE-2021-38480

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to cross-site request forgery when unauthorized commands are submit...

8.8
CVSS
a year ago
Act Now

🔥 CVE-2021-38486

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 cloud portal allows for self-registration of the affected product without any requ...

8.5
CVSS
a year ago
Act Now

CVE-2021-38464

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 have inadequate encryption strength, which may allow an attacker to intercept the...

7.4
CVSS
a year ago

CVE-2021-38484

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 do not have a filter or signature check to detect or prevent an upload of maliciou...

7.2
CVSS
a year ago

CVE-2021-38466

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 do not perform sufficient input validation on client requests from the help page....

6.1
CVSS
a year ago

CVE-2021-38476

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 authentication process response indicates and validates the existence of a usernam...

5.3
CVSS
a year ago

CVE-2021-38482

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 website used to control the router is vulnerable to stored cross-site scripting, w...

4.8
CVSS
a year ago

CVE-2021-38468

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to stored cross-scripting, which may allow an attacker to hijack se...

4.8
CVSS
a year ago
http://www.vicarius.io is owned and operated by Vicarius Ltd. (the “Company”). All information contained on the Website is purely for informational, and educational purposes and should be independently verified and confirmed. Vicarius does not accept any liability for any loss or damage whatsoever caused in reliance upon such information or services. No statements or information presented in any form by Vicarius is intended as fact, and you agree that you will not consider the statements or information presented on the Website as fact or as a guarantee of performance.

Security Research Topics

By
Sep 30, 2022

February Trending CVEs: CVE-2021-3156

By
Sep 30, 2022

February Trending CVEs: CVE-2020-1472

By
Sep 30, 2022

February Trending CVEs: CVE-2021-24078

By
Sep 30, 2022

Top Trending CVEs of January 2021

By
Sep 30, 2022

Security Vulnerability Examples

By
Sep 30, 2022

Zoom Security Vulnerabilities

By
Sep 30, 2022

What is a Vulnerability?

By
Sep 30, 2022

Top 10 Software Vulnerabilities

By
Sep 30, 2022

Zero-Day Vulnerability: Defense Strategies

last_chanse_04.png

Start Closing Security Gaps

  • Risk reduction from Day 1
  • Fast set-up and deployment
  • Unified platform
  • Full-featured 30-day trial
Get a Demo
Start Free Trial!