wu610777031

11 exploits Active since Apr 2022
CVE-2022-27268 WRITEUP CRITICAL WRITEUP
InHand Networks InRouter 900 Firmware < 1.0.0.r11700 - Remote Code Execution via get_cgi_from_memory
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the component get_cgi_from_memory. This vulnerability is triggered via a crafted packet.
CVSS 9.8
CVE-2022-27269 WRITEUP CRITICAL WRITEUP
InRouter 900 Firmware < 1.0.0.r11700 - Remote Code Execution via config_ovpn Component
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the component config_ovpn. This vulnerability is triggered via a crafted packet.
CVSS 9.8
CVE-2022-27270 WRITEUP CRITICAL WRITEUP
InHand Networks InRouter 900 Firmware < 1.0.0.r11700 - Remote Code Execution via ipsec_secrets Component
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the component ipsec_secrets. This vulnerability is triggered via a crafted packet.
CVSS 9.8
CVE-2022-27271 WRITEUP CRITICAL WRITEUP
InHand Networks InRouter 900 Firmware < 1.0.0.r11700 - Remote Code Execution via python-lib
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the component python-lib. This vulnerability is triggered via a crafted packet.
CVSS 9.8
CVE-2022-27272 WRITEUP CRITICAL WRITEUP
InRouter 900 Firmware < 1.0.0.r11700 - Remote Code Execution via sub_1791C Function
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the function sub_1791C. This vulnerability is triggered via a crafted packet.
CVSS 9.8
CVE-2022-27273 WRITEUP CRITICAL WRITEUP
InHand Networks InRouter 900 Firmware < 1.0.0.r11700 - Remote Code Execution via sub_12168 Function
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the function sub_12168. This vulnerability is triggered via a crafted packet.
CVSS 9.8
CVE-2022-27275 WRITEUP CRITICAL WRITEUP
InRouter 900 Firmware < 1.0.0.r11700 - Remote Code Execution via Crafted Packet
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the function sub_122D0. This vulnerability is triggered via a crafted packet.
CVSS 9.8
CVE-2022-27276 WRITEUP CRITICAL WRITEUP
InHand Networks InRouter 900 Firmware < 1.0.0.r11700 - Remote Code Execution via sub_10F2C Function
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a remote code execution (RCE) vulnerability via the function sub_10F2C. This vulnerability is triggered via a crafted packet.
CVSS 9.8
CVE-2022-27277 WRITEUP CRITICAL WRITEUP
InRouter 900 Firmware < 1.0.0.r11700 - Arbitrary File Deletion via sub_17C08 Function
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file deletion vulnerability via the function sub_17C08.
CVSS 9.1
CVE-2022-27279 WRITEUP HIGH WRITEUP
InRouter 900 Firmware < 1.0.0.r11700 - Path Traversal and Arbitrary File Read via sub_177E0
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain an arbitrary file read via the function sub_177E0.
CVSS 7.5
CVE-2022-27280 WRITEUP MEDIUM WRITEUP
InRouter 900 Firmware < 1.0.0.r11700 - Stored Cross-Site Scripting via web_exec Parameter
InHand Networks InRouter 900 Industrial 4G Router before v1.0.0.r11700 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the web_exec parameter at /apply.cgi.
CVSS 5.4