W4Rd3N

**Name of the Vulnerable Software and Affected Versions** COMFAST CF-XR11 version 2.7.2 **Description** An issue in COMFAST CF-XR11 allows an attacker to execute arbitrary code via the `destination` parameter of the `sub 431F64` function in `bin/webmgnt`. **Recommendations** For COMFAST CF-XR11 version 2.7.2, consider disabling the `sub 431F64` function until a patch is available to prevent exploitation via the `destination` parameter. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** COMFAST CF-XR11 version 2.7.2 **Description** An issue in the software allows an attacker to execute arbitrary code via the `ifname` and `mac` parameters in the `sub 410074` function at `bin/webmgnt`. **Recommendations** For COMFAST CF-XR11 version 2.7.2, consider disabling the `sub 410074` function as a temporary workaround until a patch is available. Restrict access to the `bin/webmgnt` module to minimize the risk of exploitation. Avoid using the `ifname` and `mac` parameters in the affected function until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** COMFAST CF-XR11 version 2.7.2 **Description** An issue in COMFAST CF-XR11 allows an attacker to execute arbitrary code via the `protal delete picname` parameter in the `sub 41171C` function at bin/webmgnt. **Recommendations** For COMFAST CF-XR11 version 2.7.2, consider disabling the `sub 41171C` function until a patch is available. Restrict access to the bin/webmgnt module to minimize the risk of exploitation. Avoid using the `protal delete picname` parameter in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** COMFAST CF-XR11 version 2.7.2 **Description** The issue is a command injection vulnerability detected at function sub 4143F0. Attackers can send POST request messages to "/usr/bin/webmgnt" and inject commands into parameter `timestr`. **Recommendations** For COMFAST CF-XR11 version 2.7.2, as a temporary workaround, consider restricting access to the "/usr/bin/webmgnt" endpoint until a patch is available. Avoid using the parameter `timestr` in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** COMFAST CF-XR11 version 2.7.2 **Description** The issue is a command injection vulnerability detected at the function sub 415588. Attackers can send POST request messages to the /usr/bin/webmgnt endpoint and inject commands into the parameters `interface` and `display name`. **Recommendations** For COMFAST CF-XR11 version 2.7.2, as a temporary workaround, consider restricting access to the /usr/bin/webmgnt endpoint to minimize the risk of exploitation. Avoid using the parameters `interface` and `display name` in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.