CurryRaid/iot_vul

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-44466 ↗	Sep 11, 2024Wednesday, 11 September 2024, 16:15	9.8 CRITICAL	—
COMFAST CF-XR11 V2.7.2 has a command injection vulnerability in function sub_424CB4. Attackers can send POST request messages to /usr/bin/webmgnt and inject commands into parameter iface.