Lucene search
K

3874 matches found

CVE
CVE
added 2026/03/20 4:21 p.m.18 views

CVE-2026-22897

QuNetSwitch is affected by a remote command injection vulnerability (CVE-2026-22897). The issue allows an attacker to execute arbitrary commands with network access, requiring no user interaction and no privileges. The root cause is a command injection reachable over the network, leading to high ...

9.8CVSS6.1AI score0.01061EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/03/20 6:31 a.m.3 views

EUVD-2026-13524

A vulnerability was determined in Comfast CF-AC100 2.6.0.8. Affected is an unknown function of the file /cgi-bin/mbox-config?method=SET&section=updateinterfacepng. This manipulation causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclose...

5.8CVSS5.5AI score0.02097EPSS
Exploits0References5
NVD
NVD
added 2026/03/20 4:16 a.m.5 views

CVE-2026-4468

A vulnerability was determined in Comfast CF-AC100 2.6.0.8. Affected is an unknown function of the file /cgi-bin/mbox-config?method=SET&section=updateinterfacepng. This manipulation causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclose...

5.8CVSS0.02097EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/20 3:32 a.m.5 views

CVE-2026-4468

A vulnerability was determined in Comfast CF-AC100 2.6.0.8. Affected is an unknown function of the file /cgi-bin/mbox-config?method=SET&section=updateinterfacepng. This manipulation causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclose...

5.8CVSS5.5AI score0.02097EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/20 3:32 a.m.17 views

CVE-2026-4468

CVE-2026-4468 affects Comfast CF-AC100 2.6.0.8. An unknown function in the URL /cgi-bin/mbox-config?method=SET&section=update_interface_png is vulnerable to remote command injection. The manipulation can be performed remotely, and the exploit has been publicly disclosed. The vendor was contacted ...

5.8CVSS5.5AI score0.02097EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/20 3:31 a.m.5 views

EUVD-2026-13484

A vulnerability has been found in Comfast CF-AC100 2.6.0.8. This affects an unknown function of the file /cgi-bin/mbox-config?method=SET&section=ntptimezone. The manipulation leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public an...

5.8CVSS5.3AI score0.02479EPSS
Exploits0References5
NVD
NVD
added 2026/03/20 3:16 a.m.5 views

CVE-2026-4467

A vulnerability was found in Comfast CF-AC100 2.6.0.8. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET&section=wirelessdevicedissoc. The manipulation results in command injection. The attack can be executed remotely. The exploit has been made public and could be used...

5.8CVSS0.02055EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/20 2:32 a.m.23 views

CVE-2026-4467 Comfast CF-AC100 mbox-config command injection

A vulnerability was found in Comfast CF-AC100 2.6.0.8. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET&section=wirelessdevicedissoc. The manipulation results in command injection. The attack can be executed remotely. The exploit has been made public and could be used...

5.8CVSS0.02055EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/20 2:32 a.m.2 views

CVE-2026-4467

A vulnerability was found in Comfast CF-AC100 2.6.0.8. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET&section=wirelessdevicedissoc. The manipulation results in command injection. The attack can be executed remotely. The exploit has been made public and could be used...

5.8CVSS5.5AI score0.02055EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/20 2:32 a.m.12 views

CVE-2026-4467

CVE-2026-4467 affects Comfast CF-AC100 firmware 2.6.0.8. An attacker can remotely trigger command injection via /cgi-bin/mbox-config?method=SET&section=wireless_device_dissoc, by exploiting a vulnerable function in that path. The exploit is publicly available, and exploitation has activity descri...

5.8CVSS5.5AI score0.02055EPSS
Exploits0References4
NVD
NVD
added 2026/03/20 2:16 a.m.3 views

CVE-2026-4465

A flaw has been found in D-Link DIR-513 1.10. The impacted element is an unknown function of the file /goform/formSysCmd. Executing a manipulation of the argument sysCmd can lead to os command injection. The attack may be launched remotely. The exploit has been published and may be used. This...

8.8CVSS0.03092EPSS
Exploits1References5
NVD
NVD
added 2026/03/20 2:16 a.m.4 views

CVE-2026-4466

A vulnerability has been found in Comfast CF-AC100 2.6.0.8. This affects an unknown function of the file /cgi-bin/mbox-config?method=SET&section=ntptimezone. The manipulation leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public an...

5.8CVSS0.02479EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/20 2:2 a.m.3 views

CVE-2026-4466

A vulnerability has been found in Comfast CF-AC100 2.6.0.8. This affects an unknown function of the file /cgi-bin/mbox-config?method=SET&section=ntptimezone. The manipulation leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public an...

5.8CVSS5.3AI score0.02479EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/20 2:2 a.m.2 views

CVE-2026-4466 Comfast CF-AC100 mbox-config command injection

A vulnerability has been found in Comfast CF-AC100 2.6.0.8. This affects an unknown function of the file /cgi-bin/mbox-config?method=SET&section=ntptimezone. The manipulation leads to command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public an...

5.8CVSS5.3AI score0.02479EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/20 2:2 a.m.3 views

CVE-2026-4465

A flaw has been found in D-Link DIR-513 1.10. The impacted element is an unknown function of the file /goform/formSysCmd. Executing a manipulation of the argument sysCmd can lead to os command injection. The attack may be launched remotely. The exploit has been published and may be used. This...

6.5CVSS5.7AI score0.03092EPSS
Exploits1References5Affected Software1
EUVD
EUVD
added 2026/03/20 2:2 a.m.3 views

EUVD-2026-13482

A flaw has been found in D-Link DIR-513 1.10. The impacted element is an unknown function of the file /goform/formSysCmd. Executing a manipulation of the argument sysCmd can lead to os command injection. The attack may be launched remotely. The exploit has been published and may be used. This...

6.5CVSS5.7AI score0.03092EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.5 views

PT-2026-26638

A command injection vulnerability has been reported to affect QuNetSwitch. The remote attackers can then exploit the vulnerability to execute arbitrary commands. We have already fixed the vulnerability in the following version: QuNetSwitch 2.0.4.0415 and later...

9.3CVSS6.1AI score0.01061EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.10 views

PT-2026-26555

A vulnerability was determined in Comfast CF-AC100 2.6.0.8. Affected is an unknown function of the file /cgi-bin/mbox-config?method=SET&section=update interface png. This manipulation causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly...

5.8CVSS5.5AI score0.02097EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.4 views

PT-2026-26536

A flaw has been found in D-Link DIR-513 1.10. The impacted element is an unknown function of the file /goform/formSysCmd. Executing a manipulation of the argument sysCmd can lead to os command injection. The attack may be launched remotely. The exploit has been published and may be used. This...

6.5CVSS6.4AI score0.03092EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/03/20 12:0 a.m.6 views

PT-2026-26548

A vulnerability was found in Comfast CF-AC100 2.6.0.8. This impacts an unknown function of the file /cgi-bin/mbox-config?method=SET&section=wireless device dissoc. The manipulation results in command injection. The attack can be executed remotely. The exploit has been made public and could be use...

5.8CVSS5.5AI score0.02055EPSS
Exploits0References6
Rows per page
Query Builder