3 matches found
CVE-2026-4466 Comfast CF-AC100 mbox-config command injection
A vulnerability has been found in Comfast CF-AC100 2.6.0.8. This affects an unknown function of the file /cgi-bin/mbox-config?method=SET§ion=ntptimezone. The manipulation leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public an...
CVE-2026-2535
The CVE-2026-2535 entry affects Comfast CF-N1 V2 2.6.0.2. The vulnerability exists in the function sub_44AB9C within /cgi-bin/mbox-config?method=SET§ion=ptest_channel; manipulating the channel argument leads to command injection. Exploitation can be performed remotely, and public proof of con...
PT-2026-8311
A vulnerability was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub 44AB9C of the file /cgi-bin/mbox-config?method=SET§ion=ptest channel. The manipulation of the argument channel results in command injection. The attack can be launched remotely. The exploit has bee...