Security Advisory

CVE-2022-26518

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-05-12 17:01:49

Last updated 2025-04-15 19:02:08

Assigner talos

State PUBLISHED

Description

An OS command injection vulnerability exists in the console infactory_net functionality of InHand Networks InRouter302 V3.5.37. A specially-crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗