A critical command injection vulnerability in the ZeroTier VPN feature of InHand Networks industrial routers allows remote attackers to obtain root privileges on target devices.

The vulnerability is located within the ZeroTier VPN implementation in the firmware. An attacker can exploit this to perform command injection, leading to the acquisition of root privileges on the industrial router.

With a CVSS score of 9.8, this vulnerability poses a severe threat to network security. Gaining root access allows an attacker to fully compromise the device, potentially facilitating unauthorized access to protected internal network segments connected via the VPN.

Immediate Action: Update the firmware for affected InHand Networks routers to versions later than V3.5.108 (for IR302) or V1.0.118 (for IR305/IR315/IR615).

Proactive Monitoring: Monitor VPN logs for unusual activity or unauthorized configuration attempts within the ZeroTier feature.

Compensating Controls: Disable the ZeroTier VPN feature if it is not strictly necessary for business operations until the firmware update can be applied.

Public Exploit Available: False

Security teams should immediately update the firmware on all InHand Networks industrial routers. If patching cannot be performed immediately, disabling the vulnerable ZeroTier feature is a recommended temporary measure to mitigate the risk.