Security Advisory

CVE-2021-38474

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-19 12:10:01

Last updated 2024-09-16 17:47:53

Assigner icscert

State PUBLISHED

Description

InHand Networks IR615 Routers Versions 2.3.0.r4724 and 2.3.0.r4870 have has no account lockout policy configured for the login page of the product. This may allow an attacker to execute a brute-force password attack with no time limitation and without harming the normal operation of the user. This could allow an attacker to gain valid credentials for the product interface.

← Browse all CVEs View on cve.org ↗