← Back

Irz

irz

3 CVEs • 12 products

Products (12)

Click to collapse
Toggle
Ruh2
ruh2
1 CVE
Ru21 Firmware
ru21_firmware
1 CVE
Ru21w Firmware
ru21w_firmware
1 CVE
Rl21 Firmware
rl21_firmware
1 CVE
Ru41 Firmware
ru41_firmware
1 CVE
Rl01 Firmware
rl01_firmware
1 CVE
Ruh2 Firmware
ruh2_firmware
1 CVE
Ru21
ru21
0 CVEs
Ru21w
ru21w
0 CVEs
Rl21
rl21
0 CVEs
Ru41
ru41
0 CVEs
Rl01
rl01
0 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-32302
1Irz
1Ruh2 Firmware
Jun 17, 2026
Feb 27, 2023
N/A· v4
6.1 MEDIUM· v3
N/A· v2
Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter.
CVE-2022-27226
1Irz
5Rl01 Firmware
Rl21 FirmwareRu21 Firmware+2 more
Jun 17, 2026
Mar 19, 2022
N/A· v4
8.8 HIGH· v3
9.3 HIGH· v2
A CSRF issue in /api/crontab on iRZ Mobile Routers through 2022-03-16 allows a threat actor to create a crontab entry in the router administration panel. The cronjob will consequently execute the entry on the threat acto...Show more
A CSRF issue in /api/crontab on iRZ Mobile Routers through 2022-03-16 allows a threat actor to create a crontab entry in the router administration panel. The cronjob will consequently execute the entry on the threat actor's defined interval, leading to remote code execution, allowing the threat actor to gain filesystem access. In addition, if the router's default credentials aren't rotated or a threat actor discovers valid credentials, remote code execution can be achieved without user interaction.Show less
CVE-2016-2309
1Irz
1Ruh2
May 6, 2026
May 30, 2016
N/A· v4
7.2 HIGH· v3
8.0 HIGH· v2
iRZ RUH2 before 2b does not validate firmware patches, which allows remote authenticated users to modify data or cause a denial of service via unspecified vectors.