CNNVD-202508-3297 Information

CNNVD ID

CNNVD-202508-3297

Related CVE

CVE-2025-9581

• CNNVD Published: 2025-08-28

Description (Chinese)

COMFAST CF-N1是中国四海众联（COMFAST）公司的一款无线路由器。 COMFAST CF-N1 2.6.0版本存在安全漏洞，该漏洞源于对文件/usr/bin/webmgnt中参数phy_interface的错误操作导致命令注入。

Description (English)

COMFAST CF-N1 is a wireless router of COMFAST China. There is a security loophole in version 2.6.0 of COMFAST CF-N1 resulting from an error in the phy interface of the parameter in the document/usr/bin/webmgnt that led to the injection of the command.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

四海众联

Published

2025-08-28

Last Modified

2026-02-24

References

https://github.com/ZZ2266/.github.io/tree/main/COMFAST/N1V2/multi_pppoe https://vuldb.com/?submit.636127 https://vuldb.com/?id.321694 https://vuldb.com/?ctiid.321694 https://nvd.nist.gov/vuln/detail/CVE-2025-9581

Patch

http://www.comfast.com.cn/