0xcc12138/COMFAST-CF-WR631AX-Router-Backend-Command-Injection-RCE-Analysis-Report

Releases0

OS command injection in COMFAST CF-WR631AX V3 router (firmware V2.7.0.8) via the `destination` parameter of the ping_config API endpoint in /usr/bin/webmgnt, leading to remote code execution as root.

Subscribe above to receive notifications when new versions are released.

	Version	Date	Stability Stability is determined by the version string and my be inaccurate.

Previous Next