Zero-Day Advisory

Fortinet Discovers Inhand Networks InRouter615-S Brute Force Vulnerability

Summary

Fortinet's FortiGuard Labs has discovered a Brute Force vulnerability in Inhand Networks InRouter615-S.

InHand Networks is a global leader in Industrial IoT with product portfolio including industrial M2M routers, gateways, industrial Ethernet switches, industrial computers and IoT management platforms. It provides complete IoT solutions for various vertical markets including Smart Grid, Industrial Automation, Remote Machine Monitoring, Smart Vending, Smart City, Retail and more.

A Brute Force vulnerability has been discovered in Inhand Networks InRouter615-S. It is caused by insecure design.

Solutions

FortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:

SSH.Connection.Brute.Force
Released May 31, 2013

Users should apply the solution provided by InHand Networks.

Timeline

Fortinet reported the vulnerability to InHand Networks on October 27, 2022.

InHand Networks confirmed the vulnerability on November 15, 2022.

InHand Networks patched the vulnerability on March 14, 2023.

References

• https://inhandnetworks.com/product-security-advisories.html https://inhandnetworks.com/upload/attachment/202303/13/InHand-PSA-2023-03.pdf

Acknowledgement

This vulnerability was discovered by Zhouyuan Yang of Fortinet's FortiGuard Labs.

IPS Subscription

Fortinet customers who subscribe to Fortinet's intrusion prevention (IPS) service should be protected against this vulnerability with the appropriate configuration parameters in place. Fortinet's IPS service is one component of FortiGuard Subscription Services, which also offer comprehensive solutions such as antivirus, Web content filtering and antispam capabilities. These services enable protection against threats on both application and network layers. FortiGuard Services are continuously updated by FortiGuard Labs, which enables Fortinet to deliver a combination of multi-layered security intelligence and true zero-day protection from new and emerging threats. These updates are delivered to all FortiGate, FortiMail and FortiClient products. Fortinet strictly follows responsible disclosure guidelines to ensure optimum protection during a threat's lifecycle.