Description
A command injection vulnerability exists in the WireGuard VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target devices.
Published: 2026-05-28
Score: 9.8 Critical
EPSS: 1.3% Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A command injection vulnerability is present in the WireGuard VPN component of certain InHand Networks router firmware. The flaw allows a remote attacker to inject arbitrary shell commands, which are executed with root privileges on the affected device. The weakness is a classic input validation error (CWE-77).

Affected Systems

InHand Networks routers IR302 (firmware V3.5.108), IR305, IR315, and IR615 (firmware V1.0.118), and all earlier firmware releases of these models are susceptible to the vulnerability.

Risk and Exploitability

The attack vector is remote, leveraging the WireGuard VPN interface exposed by the firmware. The CVSS score of 9.8 denotes critical severity, while the EPSS score of 0.01269 (≈1.27%) indicates a very low but non-zero probability of exploitation, and the vulnerability is not listed in the CISA KEV catalog, indicating no known widespread exploitation yet. The ability to gain root over the VPN poses a severe threat to device integrity and network security.

Generated by OpenCVE AI on June 17, 2026 at 11:52 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the device firmware to the latest version released by InHand Networks that addresses the command injection flaw
  • If an update is not immediately available, disable the WireGuard VPN function or restrict its access so that only trusted networks can reach it
  • Use firewall rules or network segmentation to limit exposure of the WireGuard interface to untrusted hosts
  • Surveil system logs for unexpected executions of shell commands that could indicate exploitation attempts

Generated by OpenCVE AI on June 17, 2026 at 11:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 17 Jun 2026 12:15:00 +0000

Type Values Removed Values Added
Title Command Injection via WireGuard VPN in InHand Networks Router Firmware

Tue, 16 Jun 2026 12:45:00 +0000

Type Values Removed Values Added
Title Command Injection via WireGuard VPN in InHand Networks Router Firmware

Sat, 30 May 2026 23:00:00 +0000

Type Values Removed Values Added
First Time appeared Inhandnetworks wireguard Vpn
Vendors & Products Inhandnetworks wireguard Vpn

Fri, 29 May 2026 14:15:00 +0000

Type Values Removed Values Added
First Time appeared Inhandnetworks
Inhandnetworks ir302
Inhandnetworks ir302 Firmware
Inhandnetworks ir305
Inhandnetworks ir305 Firmware
Inhandnetworks ir315
Inhandnetworks ir315 Firmware
Inhandnetworks ir615
Inhandnetworks ir615 Firmware
CPEs cpe:2.3:h:inhandnetworks:ir302:-:*:*:*:*:*:*:*
cpe:2.3:h:inhandnetworks:ir305:-:*:*:*:*:*:*:*
cpe:2.3:h:inhandnetworks:ir315:-:*:*:*:*:*:*:*
cpe:2.3:h:inhandnetworks:ir615:-:*:*:*:*:*:*:*
cpe:2.3:o:inhandnetworks:ir302_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:inhandnetworks:ir305_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:inhandnetworks:ir315_firmware:*:*:*:*:*:*:*:*
cpe:2.3:o:inhandnetworks:ir615_firmware:*:*:*:*:*:*:*:*
Vendors & Products Inhandnetworks
Inhandnetworks ir302
Inhandnetworks ir302 Firmware
Inhandnetworks ir305
Inhandnetworks ir305 Firmware
Inhandnetworks ir315
Inhandnetworks ir315 Firmware
Inhandnetworks ir615
Inhandnetworks ir615 Firmware

Thu, 28 May 2026 19:45:00 +0000

Type Values Removed Values Added
Title Command Injection in InHand Networks IR302-IR615 VPN Firmware Allows Remote Root Access
Weaknesses CWE-269
CWE-78

Thu, 28 May 2026 18:45:00 +0000

Type Values Removed Values Added
Title Command Injection in InHand Networks IR302-IR615 VPN Firmware Allows Remote Root Access
Weaknesses CWE-269
CWE-78

Thu, 28 May 2026 18:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-77
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 28 May 2026 17:00:00 +0000

Type Values Removed Values Added
Description A command injection vulnerability exists in the WireGuard VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target devices.
References

Subscriptions

Inhandnetworks Ir302 Ir302 Firmware Ir305 Ir305 Firmware Ir315 Ir315 Firmware Ir615 Ir615 Firmware Wireguard Vpn
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-05-28T17:39:05.911Z

Reserved: 2026-04-06T00:00:00.000Z

Link: CVE-2026-38704

cve-icon Vulnrichment

Updated: 2026-05-28T17:39:01.617Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-28T17:16:21.413

Modified: 2026-05-29T14:08:07.467

Link: CVE-2026-38704

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-17T12:00:08Z

Weaknesses
  • CWE-77

    Improper Neutralization of Special Elements used in a Command ('Command Injection')