CVE-2023-38863
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Aug 15, 2023
Updated: Aug 22, 2023
CWE ID 77
Summary
CVE-2023-38863 is a newly disclosed vulnerability in COMFAST CF-XR11 version 2.7.2. This issue permits an attacker to execute arbitrary code by exploiting a flaw in the sub_410074 function located in the bin/webmgnt. The vulnerability can be triggered through manipulation of the ifname and mac parameters. This issue poses a significant risk to systems running the affected version of COMFAST CF-XR11 and requires immediate attention from administrators to apply the necessary patches.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- comFast