CVE-2022-26002
Published: 12 May 2022
Summary
CVE-2022-26002 is a high-severity Stack-based Buffer Overflow (CWE-121) vulnerability in Inhandnetworks Ir302 Firmware. Its CVSS base score is 7.2 (High).
Operationally, ranked in the top 7.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
A stack-based buffer overflow vulnerability exists in the console factory functionality of InHand Networks InRouter302 version 3.5.4. The flaw, tracked as CVE-2022-26002 and also associated with CWE-121 and CWE-787, can be triggered by a specially crafted network request and results in remote code execution. The issue carries a CVSS 3.1 score of 7.2 reflecting network attack vector, low attack complexity, and high impact on confidentiality, integrity, and availability when successfully exploited.
An authenticated attacker with high privileges can send a sequence of malicious packets to the affected device and achieve arbitrary code execution on the router. Because the vulnerability is reachable over the network without user interaction, successful exploitation grants the attacker full control of the device and any connected industrial or IoT infrastructure.
Vendor advisory InHand-PSA-2022-01 and the detailed Talos Intelligence report TALOS-2022-1476 provide mitigation guidance and are available at the referenced URLs. The EPSS score has remained flat at 0.0773 with no material increase since disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2022-30571
Vulnerability details
A stack-based buffer overflow vulnerability exists in the console factory functionality of InHand Networks InRouter302 V3.5.4. A specially-crafted network request can lead to remote code execution. An attacker can send a sequence of malicious packets to trigger this vulnerability.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Out-of-bounds writes that corrupt control flow or inject shellcode are rendered non-executable by the same memory protections.