A vulnerability was found in Comfast CF-N1 2.6.0. Affected by this issue is the function update_interface_png of the file /usr/bin/webmgnt. The manipulation of the argument interface/display_name results in command injection. The attack can be executed remotely. The exploit has been made public and could be used.
Metrics
Affected Vendors & Products
References
History
Thu, 28 Aug 2025 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in Comfast CF-N1 2.6.0. Affected by this issue is the function update_interface_png of the file /usr/bin/webmgnt. The manipulation of the argument interface/display_name results in command injection. The attack can be executed remotely. The exploit has been made public and could be used. | |
Title | Comfast CF-N1 webmgnt update_interface_png command injection | |
Weaknesses | CWE-74 CWE-77 |
|
References |
| |
Metrics |
cvssV2_0
|

Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2025-08-28T20:13:50.031Z
Reserved: 2025-08-28T12:20:21.590Z
Link: CVE-2025-9584

No data.

Status : Awaiting Analysis
Published: 2025-08-28T20:15:44.877
Modified: 2025-08-29T16:24:29.730
Link: CVE-2025-9584

No data.

No data.