CVE-2021-38462: InHand Networks IR615 Router
First published: Tue Oct 19 2021(Updated: )
InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 does not enforce an efficient password policy. This may allow an attacker with obtained user credentials to enumerate passwords and impersonate other application users and perform operations on their behalf.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Inhandnetworks Ir615 Firmware | =2.3.0.r4724 | |
| Inhandnetworks Ir615 | ||
| Inhandnetworks Ir615 Firmware | =2.3.0.r4870 | |
| InHand Networks IR615 Router: Versions 2.3.0.r5417 and prior |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/type
- agent/author
- agent/references
- agent/severity
- agent/weakness
- agent/title
- agent/description
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/trending
- vendor/inhandnetworks
- canonical/inhandnetworks ir615 firmware
- version/inhandnetworks ir615 firmware/2.3.0.r4724
- canonical/inhandnetworks ir615
- version/inhandnetworks ir615 firmware/2.3.0.r4870
- vendor/inhand networks
- canonical/inhand networks ir615 router: versions 2.3.0.r5417 and prior