CVE-2021-38464

MEDIUM

InHand Networks IR615 Router <2.3.0.r4870 - Info Disclosure

Title source: llm

Description

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 have inadequate encryption strength, which may allow an attacker to intercept the communication and steal sensitive information or hijack the session.

References (1)

[Third Party Advisory, US Government Resource] https://us-cert.cisa.gov/ics/advisories/icsa-21-280-05

Scores

CVSS v3 6.4

EPSS 0.0004

EPSS Percentile 10.8%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Details

CWE

CWE-326

Status published

Products (2)

inhandnetworks/ir615_firmware 2.3.0.r4724

inhandnetworks/ir615_firmware 2.3.0.r4870

Published Oct 19, 2021

Tracked Since Feb 18, 2026