CNNVD-202508-3296 Information

CNNVD ID

CNNVD-202508-3296

Related CVE

CVE-2025-9582

• CNNVD Published: 2025-08-28

Description (Chinese)

COMFAST CF-N1是中国四海众联（COMFAST）公司的一款无线路由器。 COMFAST CF-N1 2.6.0版本存在安全漏洞，该漏洞源于对文件/usr/bin/webmgnt中参数timestr的错误操作导致命令注入。

Description (English)

COMFAST CF-N1 is a wireless router of COMFAST China. There is a security loophole in version 2.6.0 of COMFAST CF-N1 resulting from an error in the timestr parameter in document/usr/bin/webmgnt resulting in the injection of the command.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

四海众联

Published

2025-08-28

Last Modified

2026-02-24

References

https://github.com/ZZ2266/.github.io/tree/main/COMFAST/N1V2/ntp_timezone https://vuldb.com/?submit.636128 https://vuldb.com/?id.321695 https://vuldb.com/?ctiid.321695 https://nvd.nist.gov/vuln/detail/CVE-2025-9582