CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-38715

InHand Networks IR912 V1.0.0.r20042 and IR915 V1.0.0.r20042 (including earlier versions) were discovered to contain a command injection vulnerability in the log viewing function. This vulnerability allows remote attackers to execute arbitrary commands as root via a crafted input.

Exploit prediction scoring system (EPSS) score

CVSS Severity

CVSS v3 Score 9.8

References

https://www.inhand.com/wp-content/uploads/2026/06/InHand-PSA-2026-06_EN.pdf

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-38715

Products

Pricing

Contact Us