Unrated severityNVD Advisory· Published Oct 19, 2021· Updated Sep 16, 2024

InHand Networks IR615 Router

CVE-2021-38474

Description

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 have has no account lockout policy configured for the login page of the product. This may allow an attacker to execute a brute-force password attack with no time limitation and without harming the normal operation of the user. This could allow an attacker to gain valid credentials for the product interface.

Affected products

Inhand Networks/Ir615 Routerv5
Range: 2.3.0.r4724 and 2.3.0.r4870

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

us-cert.cisa.gov/ics/advisories/icsa-21-280-05mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000