CVE-2021-38472

Same vendor

• CVE-2026-38707 — A command injection vulnerability exists in the IPSec VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118, IR... (9.8 CRITICAL)
• CVE-2026-38704 — A command injection vulnerability exists in the WireGuard VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118... (9.8 CRITICAL)
• CVE-2026-38703 — A command injection vulnerability exists in the ZeroTier VPN feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118,... (9.8 CRITICAL)
• CVE-2026-38702 — A command injection vulnerability exists in the Admin Access feature of InHand Networks IR302 firmware V3.5.108, IR305 firmware V1.0.118,... (9.8 CRITICAL)
• CVE-2021-38486 — InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 cloud portal allows for self-registration of the affected product wit... (8.0 HIGH)

Same CWE

• CVE-2026-12323 — Spoofing issue in the DOM: Core & HTML component (5.4 MEDIUM)
• CVE-2026-12322 — Clickjacking issue in the Widget: Gtk component (5.4 MEDIUM)
• CVE-2026-10733 — GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.0 before 18.10.8, 18.11 before 18.11.5, and 19.0 before 19.... (4.3 MEDIUM)
• CVE-2026-28577 — In addWindow of WindowManagerService.java, there is a possible tapjacking issue due to a tapjacking/overlay attack (7.8 HIGH)
• CVE-2026-0061 — In multiple functions of WindowState.java, there is a possible way to trick a user into accepting a permission due to a tapjacking/overla... (5.9 MEDIUM)