Vulnerability Details CVE-2023-38864
An issue in COMFAST CF-XR11 v.2.7.2 allows an attacker to execute arbitrary code via the protal_delete_picname parameter in the sub_41171C function at bin/webmgnt.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.9%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2023-38864
-
cpe:2.3:h:comfast:cf-xr11:-
-
cpe:2.3:o:comfast:cf-xr11_firmware:2.7.2