PT-2023-14737 · Comfast · Comfast Cf-Wr6110N

Sn0Ox

Published

2023-02-13

Updated

2025-03-24

CVE-2022-45725

CVSS v3.1

8.8

High

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Comfast router CF-WR6110N version 2.3.1

Description The issue is related to improper input validation, allowing a remote attacker on the same network to execute arbitrary code on the target via an HTTP POST request.

Recommendations For Comfast router CF-WR6110N version 2.3.1, update to a newer version that addresses the improper input validation issue to prevent remote code execution.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2022-45725

Affected Products

Comfast Cf-Wr6110N

PT-2023-14737 · Comfast · Comfast Cf-Wr6110N

CVE-2022-45725

Weakness Enumeration

Related Identifiers

Affected Products

References · 9