CNNVD-202509-2852 Information

CNNVD ID

CNNVD-202509-2852

Related CVE

CVE-2025-57293

• CNNVD Published: 2025-09-18

Description (Chinese)

COMFAST CF-XR11是中国四海众联（COMFAST）公司的一款无线路由器。 COMFAST CF-XR11 V2.7.2版本存在安全漏洞，该漏洞源于multi_pppoe API中phy_interface参数未清理，可能导致命令注入攻击。

Description (English)

COMFAST CF-XR11 is a wireless router of COMFAST China. There is a security loophole in version COMFAST CF-XR11 V2.72, which originates from the uncleaned phy interface parameter in the mutri pppoe API, which may result in an order being injected into the attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

四海众联

Published

2025-09-18

Last Modified

2026-02-24

References

https://github.com/ZZ2266/.github.io/blob/main/comfast/multi_pppoe.markdown