CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

294 matches found

CNNVD•added 2026/03/20 12:0 a.m.•4 views

Comfast CF-AC100 命令注入漏洞

The Comfast CF-AC100 is a wireless USB network card developed by Comfast Corporation. The Comfast CF-AC100 version 2.6.0.8 has a command injection vulnerability. This vulnerability stems from operations on parameters in the /cgi-bin/mbox-config file, which may lead to command injection...

5.8CVSS5.8AI score0.02097EPSS

Exploits0References4

Positive Technologies•added 2026/03/20 12:0 a.m.•7 views

PT-2026-26555

A vulnerability was determined in Comfast CF-AC100 2.6.0.8. Affected is an unknown function of the file /cgi-bin/mbox-config?method=SET&section=update interface png. This manipulation causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly...

5.8CVSS5.5AI score0.02097EPSS

Exploits0References5

RedhatCVE•added 2026/03/10 8:9 a.m.•3 views

CVE-2026-3798

A vulnerability was detected in Comfast CF-AC100 2.6.0.8. This affects the function sub44AC14 of the file /cgi-bin/mbox-config?method=SET=pingconfig of the component Request Path Handler. The manipulation results in command injection. The attack may be launched remotely. The exploit is now public...

7.2CVSS5.6AI score0.13485EPSS

Exploits1References1

EUVD•added 2026/03/09 6:31 a.m.•2 views

EUVD-2026-10290

A vulnerability was detected in Comfast CF-AC100 2.6.0.8. This affects the function sub44AC14 of the file /cgi-bin/mbox-config?method=SET&section=pingconfig of the component Request Path Handler. The manipulation results in command injection. The attack may be launched remotely. The exploit is no...

5.8CVSS5.6AI score0.13485EPSS

Exploits1References5

OSV•added 2026/03/09 4:16 a.m.•2 views

CVE-2026-3798

7.2CVSS5.6AI score

Exploits0References4

NVD•added 2026/03/09 4:16 a.m.•4 views

CVE-2026-3798

7.2CVSS0.13485EPSS

Exploits1References4

Cvelist•added 2026/03/09 3:2 a.m.•26 views

CVE-2026-3798 Comfast CF-AC100 Request Path mbox-config sub_44AC14 command injection

5.8CVSS0.13485EPSS

Exploits1References4

ATTACKERKB•added 2026/03/09 3:2 a.m.•4 views

CVE-2026-3798

5.8CVSS5.6AI score0.13485EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2026/03/09 3:2 a.m.•2 views

CVE-2026-3798 Comfast CF-AC100 Request Path mbox-config sub_44AC14 command injection

5.8CVSS5.6AI score0.13485EPSS

Exploits1References4

CVE•added 2026/03/09 3:2 a.m.•7 views

CVE-2026-3798

CVE-2026-3798 affects Comfast CF-AC100 with firmware 2.6.0.8. The vulnerability lies in function sub_44AC14 within /cgi-bin/mbox-config?method=SET&section=ping_config (Request Path Handler), enabling remote command injection. The issue is exploitable over networks, with public exploit availabilit...

7.2CVSS5.6AI score0.13485EPSS

Exploits1References4Affected Software1

CNNVD•added 2026/03/09 12:0 a.m.•3 views

Comfast CF-AC100 命令注入漏洞

The Comfast CF-AC100 is a wireless USB network card developed by Comfast Corporation. The Comfast CF-AC100 version 2.6.0.8 has a command injection vulnerability. This vulnerability stems from incorrect operations on the function sub44AC14 in the file/cgi-bin/mbox-config?method=SET§ion=pingconfig,...

7.2CVSS5.8AI score0.13485EPSS

Exploits1References5

Positive Technologies•added 2026/03/09 12:0 a.m.•6 views

PT-2026-24006

A vulnerability was detected in Comfast CF-AC100 2.6.0.8. This affects the function sub 44AC14 of the file /cgi-bin/mbox-config?method=SET&section=ping config of the component Request Path Handler. The manipulation results in command injection. The attack may be launched remotely. The exploit is...

5.8CVSS5.6AI score0.13485EPSS

Exploits1References4

RedhatCVE•added 2026/02/21 7:27 a.m.•5 views

CVE-2026-2823

A vulnerability was detected in Comfast CF-E7 2.6.0.9. The impacted element is the function sub41ACCC of the file /cgi-bin/mbox-config?method=SET=ntptimezone of the component webmggnt. Performing a manipulation of the argument timestr results in command injection. The attack is possible to be...

8.8CVSS6.3AI score0.13049EPSS

Exploits1References1

RedhatCVE•added 2026/02/21 7:26 a.m.•3 views

CVE-2026-2824

A flaw has been found in Comfast CF-E7 2.6.0.9. This affects the function sub441CF4 of the file /cgi-bin/mbox-config?method=SET=pingconfig of the component webmggnt. Executing a manipulation of the argument destination can lead to command injection. The attack may be performed from remote. The...

8.8CVSS6.1AI score0.09486EPSS

Exploits1References1

OSV•added 2026/02/20 6:17 a.m.•3 views

CVE-2026-2824

A flaw has been found in Comfast CF-E7 2.6.0.9. This affects the function sub441CF4 of the file /cgi-bin/mbox-config?method=SET&section=pingconfig of the component webmggnt. Executing a manipulation of the argument destination can lead to command injection. The attack may be performed from remote...

8.8CVSS5.5AI score0.09486EPSS

Exploits1References4

NVD•added 2026/02/20 6:17 a.m.•7 views

CVE-2026-2824

8.8CVSS0.09486EPSS

Exploits1References4

Cvelist•added 2026/02/20 5:32 a.m.•25 views

CVE-2026-2824 Comfast CF-E7 webmggnt mbox-config sub_441CF4 command injection

6.5CVSS0.09486EPSS

Exploits1References4

ATTACKERKB•added 2026/02/20 5:32 a.m.•4 views

CVE-2026-2824

6.5CVSS5.3AI score0.09486EPSS

Exploits1References4Affected Software1

Vulnrichment•added 2026/02/20 5:32 a.m.•4 views

CVE-2026-2824 Comfast CF-E7 webmggnt mbox-config sub_441CF4 command injection

6.5CVSS5.3AI score0.09486EPSS

Exploits1References4

CVE•added 2026/02/20 5:32 a.m.•15 views

CVE-2026-2824

Comfast CF-E7 firmware 2.6.0.9 contains a vulnerability in webmggnt’s /cgi-bin/mbox-config?method=SET&section=ping_config: the function sub_441CF4 can be tricked by altering the destination argument to achieve command injection. The flaw allows remote exploitation; multiple sources note the explo...

8.8CVSS5.3AI score0.09486EPSS

Exploits1References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by