Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
InHand Networks IR615 Router
Vulnerability Description
InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to cross-site request forgery when unauthorized commands are submitted from a user the web application trusts. This may allow an attacker to remotely perform actions on the router’s management portal, such as making configuration changes, changing administrator credentials, and running system commands on the router.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
IR615 Router 跨站请求伪造漏洞
Vulnerability Description
瑞穆科技 IR615 Router是中国瑞穆科技公司的一款稳定、易用、安全的4G工业路由器。 IR615 Router 存在跨站请求伪造漏洞,该漏洞源于当web应用程序信任的用户提交未经授权的命令时,受影响的产品很容易受到跨站点请求伪造的影响。攻击者可利用该漏洞远程地在路由器的管理门户上执行操作,更改配置、更改管理员凭据和在路由器上运行系统命令。
CVSS Information
N/A
Vulnerability Type
N/A