Lucene search
K

294 matches found

Cvelist
Cvelist
added 2026/02/16 5:32 a.m.37 views

CVE-2026-2537 Comfast CF-E4 HTTP POST Request mbox-config command injection

A vulnerability was identified in Comfast CF-E4 2.6.0.1. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET&section=ntptimezone of the component HTTP POST Request Handler. Such manipulation of the argument timestr leads to command injection. The attack may be launched...

5.8CVSS0.18248EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/16 5:32 a.m.6 views

CVE-2026-2537 Comfast CF-E4 HTTP POST Request mbox-config command injection

A vulnerability was identified in Comfast CF-E4 2.6.0.1. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET&section=ntptimezone of the component HTTP POST Request Handler. Such manipulation of the argument timestr leads to command injection. The attack may be launched...

5.8CVSS5.5AI score0.18248EPSS
Exploits1References4
OSV
OSV
added 2026/02/16 5:16 a.m.3 views

CVE-2026-2535

A vulnerability was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub44AB9C of the file /cgi-bin/mbox-config?method=SET&section=ptestchannel. The manipulation of the argument channel results in command injection. The attack can be launched remotely. The exploit has been...

8.8CVSS5.6AI score0.12476EPSS
Exploits1References4
NVD
NVD
added 2026/02/16 5:16 a.m.7 views

CVE-2026-2535

A vulnerability was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub44AB9C of the file /cgi-bin/mbox-config?method=SET&section=ptestchannel. The manipulation of the argument channel results in command injection. The attack can be launched remotely. The exploit has been...

8.8CVSS0.12476EPSS
Exploits1References4
CVE
CVE
added 2026/02/16 4:32 a.m.15 views

CVE-2026-2535

The CVE-2026-2535 entry affects Comfast CF-N1 V2 2.6.0.2. The vulnerability exists in the function sub_44AB9C within /cgi-bin/mbox-config?method=SET&section=ptest_channel; manipulating the channel argument leads to command injection. Exploitation can be performed remotely, and public proof of con...

8.8CVSS6.3AI score0.12476EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/16 4:32 a.m.5 views

CVE-2026-2535

A vulnerability was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub44AB9C of the file /cgi-bin/mbox-config?method=SET&section=ptestchannel. The manipulation of the argument channel results in command injection. The attack can be launched remotely. The exploit has been...

6.5CVSS5.4AI score0.12476EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/16 4:32 a.m.6 views

CVE-2026-2535 Comfast CF-N1 V2 mbox-config sub_44AB9C command injection

A vulnerability was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub44AB9C of the file /cgi-bin/mbox-config?method=SET&section=ptestchannel. The manipulation of the argument channel results in command injection. The attack can be launched remotely. The exploit has been...

6.5CVSS5.5AI score0.12476EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/02/16 4:32 a.m.33 views

CVE-2026-2535 Comfast CF-N1 V2 mbox-config sub_44AB9C command injection

A vulnerability was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub44AB9C of the file /cgi-bin/mbox-config?method=SET&section=ptestchannel. The manipulation of the argument channel results in command injection. The attack can be launched remotely. The exploit has been...

6.5CVSS0.12476EPSS
Exploits1References4
NVD
NVD
added 2026/02/16 4:15 a.m.14 views

CVE-2026-2534

A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET&section=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...

8.8CVSS0.12035EPSS
Exploits1References4
OSV
OSV
added 2026/02/16 4:15 a.m.7 views

CVE-2026-2534

A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET&section=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...

8.8CVSS5.6AI score0.12035EPSS
Exploits1References4
CVE
CVE
added 2026/02/16 4:2 a.m.23 views

CVE-2026-2534

CVE-2026-2534 affects Comfast CF-N1 V2 2.6.0.2. The vulnerability is located in the function sub_44AC4C of /cgi-bin/mbox-config?method=SET&section=ptest_bandwidth, where manipulating the bandwidth argument leads to remote command injection. Public exploit has been disclosed; vendor did not respon...

8.8CVSS6.3AI score0.12035EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/16 4:2 a.m.4 views

CVE-2026-2534

A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET&section=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...

6.5CVSS5.4AI score0.12035EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/02/16 4:2 a.m.36 views

CVE-2026-2534 Comfast CF-N1 V2 mbox-config sub_44AC4C command injection

A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET&section=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...

6.5CVSS0.12035EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/02/16 4:2 a.m.5 views

CVE-2026-2534 Comfast CF-N1 V2 mbox-config sub_44AC4C command injection

A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function sub44AC4C of the file /cgi-bin/mbox-config?method=SET&section=ptestbandwidth. The manipulation of the argument bandwidth leads to command injection. The attack can be initiated remotely. The exploit h...

6.5CVSS5.5AI score0.12035EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/16 12:0 a.m.7 views

PT-2026-8311

A vulnerability was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub 44AB9C of the file /cgi-bin/mbox-config?method=SET&section=ptest channel. The manipulation of the argument channel results in command injection. The attack can be launched remotely. The exploit has bee...

6.5CVSS5.4AI score0.12476EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/16 12:0 a.m.9 views

COMFAST CF-N1 命令注入漏洞

COMFAST CF-N1 is a wireless router produced by COMFAST Corporation. The Comfast CF-N1 V2 2.6.0.2 version has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter “bandwidth” in the function sub44AC4C within the file...

8.8CVSS6.6AI score0.12035EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/16 12:0 a.m.17 views

PT-2026-8310

Name of the Vulnerable Software and Affected Versions Comfast CF-N1 V2 version 2.6.0.2 Description A remote command injection issue exists in Comfast CF-N1 V2 2.6.0.2. The issue is located in the sub 44AC4C function within the /cgi-bin/mbox-config file. Manipulation of the bandwidth argument in t...

6.5CVSS6.7AI score0.12035EPSS
Exploits1References12
CNNVD
CNNVD
added 2026/02/16 12:0 a.m.8 views

COMFAST CF-N1 命令注入漏洞

COMFAST CF-N1 is a wireless router produced by COMFAST Corporation. The Comfast CF-N1 V2 2.6.0.2 version has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter “channel” in the function sub44AB9C within the file...

8.8CVSS6.6AI score0.12476EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/02/16 12:0 a.m.7 views

Comfast CF-E4 命令注入漏洞

The Comfast CF-E4 is a wireless router produced by Comfast Corporation. The Comfast CF-E4 2.6.0.1 version has a command injection vulnerability. This vulnerability stems from incorrect handling of the parameter “timestr” in the file /cgi-bin/mbox-config?method=SET§ion=ntptimezone within the...

7.2CVSS5.8AI score0.18248EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/16 12:0 a.m.9 views

PT-2026-8314

Name of the Vulnerable Software and Affected Versions Comfast CF-E4 version 2.6.0.1 Description A flaw exists in Comfast CF-E4 that allows for remote command injection. The issue is located within the HTTP POST Request Handler component, specifically in the file...

5.8CVSS5.1AI score0.18248EPSS
Exploits1References8
Rows per page
Query Builder