Comfast Cf E7 Firmware
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Comfast Cf E7 Firmware.
By the Year
In 2026 there have been 2 vulnerabilities in Comfast Cf E7 Firmware with an average score of 6.3 out of ten.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 2 | 6.30 |
It may take a day or so for new Cf E7 Firmware vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Comfast Cf E7 Firmware Security Vulnerabilities
Command Injection in Comfast CF-E7 2.6.0.9 Webmggnt Remote
CVE-2026-2824
6.3 - Medium
- February 20, 2026
A flaw has been found in Comfast CF-E7 2.6.0.9. This affects the function sub_441CF4 of the file /cgi-bin/mbox-config?method=SET§ion=ping_config of the component webmggnt. Executing a manipulation of the argument destination can lead to command injection. The attack may be performed from remote. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Command Injection
CmdInj in Comfast CF-E7 2.6.0.9 webmggnt via timestr
CVE-2026-2823
6.3 - Medium
- February 20, 2026
A vulnerability was detected in Comfast CF-E7 2.6.0.9. The impacted element is the function sub_41ACCC of the file /cgi-bin/mbox-config?method=SET§ion=ntp_timezone of the component webmggnt. Performing a manipulation of the argument timestr results in command injection. The attack is possible to be carried out remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Command Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Comfast Cf E7 Firmware or by Comfast? Click the Watch button to subscribe.
