CVE-2025-9582 | Comfast CF-N1 2.6.0 /usr/bin/webmgnt ntp_timezone timestr command injection

Inserito da Angelo Barbosa | Ago 28, 2025 | CVE

A vulnerability, which was classified as critical, was found in Comfast CF-N1 2.6.0. Affected is the function ntp_timezone of the file /usr/bin/webmgnt. Executing manipulation of the argument timestr can lead to command injection.

The identification of this vulnerability is CVE-2025-9582. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-9582 | Comfast CF-N1 2.6.0 /usr/bin/webmgnt ntp_timezone timestr command injection

Post correlati

CVE-2024-32079 | Michael Dempfle Advanced iFrame Plugin up to 2024.2 on WordPress cross site scripting

CVE-2023-52028 | Totolink A3700R 9.1.2u.5822_B20200513 setTracerouteCfg Privilege Escalation

CVE-2024-35205 | Kingsoft WPS Office up to 16.x on Android File Name path traversal

CVE-2024-8411 | ABCD ABCD2 up to 2.2.0-beta-1 /buscar_integrada.php Sub_Expresion cross site scripting