CVE-2021-38482

Name of the Vulnerable Software and Affected Versions InHand Networks IR615 Router versions 2.3.0.r4724 through 2.3.0.r4870

Description The issue affects the website used to control the router, making it vulnerable to stored cross-site scripting. This could allow an attacker to hijack sessions of users connected to the system.

Recommendations For versions 2.3.0.r4724 through 2.3.0.r4870, as a temporary workaround, consider restricting access to the router's control website to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.