CVE-2022-45725

Опубликовано: 13 фев. 2023

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

Improper Input Validation in Comfast router CF-WR6110N V2.3.1 allows a remote attacker on the same network to execute arbitrary code on the target via an HTTP POST request

Ссылки

http://cf-wr6110n.com
Broken Link
http://comfast.com
Broken Link
http://sn0ox.com/research/2023/02/05/CVE-COMFAST-CF-WR610N.html
Exploit
Third Party Advisory
http://cf-wr6110n.com
Broken Link
http://comfast.com
Broken Link
http://sn0ox.com/research/2023/02/05/CVE-COMFAST-CF-WR610N.html
Exploit
Third Party Advisory
http://sn0ox.com/research/2023/02/05/CVE-COMFAST-CF-WR610N.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:comfast:cf-wr610n_firmware:2.3.1:*:*:*:*:*:*:*

cpe:2.3:h:comfast:cf-wr610n:-:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03312

Низкий

8.8 High

CVSS3

Дефекты

CWE-20

Связанные уязвимости

GHSA-368j-g93f-6hjp