Description
A command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target devices.
Published: 2026-05-28
Score: 9.8 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A command injection flaw exists in the IPSec VPN component of InHand Networks firmware. The vulnerability allows an attacker to send crafted data that is directly executed as a system command, giving them root privileges on the device.

Affected Systems

InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and all earlier firmware releases of these models are affected.

Risk and Exploitability

The CVSS score is not provided, but the nature of the flaw – remote command injection leading to root privileges – implies a high to critical severity. The EPSS score is unavailable, and the vulnerability is not currently listed in the CISA KEV catalog. It is inferred that exploitation likely requires network access to the device’s VPN management interface and that no authentication or privilege checks are performed, making exploitation straightforward for anyone with that reach. Based on the description, the likelihood of successful exploitation is high if the device is reachable.

Generated by OpenCVE AI on May 28, 2026 at 18:58 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the firmware update detailed in the InHand PSA to all affected IR302, IR305, IR315, and IR615 devices.
  • If an update cannot be applied immediately, disable or block the VPN service to prevent remote exploitation.
  • Restrict access to the device’s management interface to a trusted network or specific IP addresses to limit exposure.
  • Monitor device logs for signs of attempted command injection or anomalous traffic patterns.

Generated by OpenCVE AI on May 28, 2026 at 18:58 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 28 May 2026 19:15:00 +0000

Type Values Removed Values Added
Title Command Injection in InHand Networks VPN Firmware Allowing Remote Root Privileges

Thu, 28 May 2026 18:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-77
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Thu, 28 May 2026 17:00:00 +0000

Type Values Removed Values Added
Description A command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR315 firmware V1.0.118, IR615 firmware V1.0.118, and earlier versions. Attackers can exploit this vulnerability to obtain ROOT privileges on remote target devices.
References

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2026-05-28T17:40:15.611Z

Reserved: 2026-04-06T00:00:00.000Z

Link: CVE-2026-38707

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-28T17:16:21.530

Modified: 2026-05-28T18:55:06.837

Link: CVE-2026-38707

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-28T19:00:16Z

Weaknesses