Security Advisory

CVE-2021-47708

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-09 20:39:33

Last updated 2026-04-07 14:05:36

Assigner VulnCheck

State PUBLISHED

Description

COMMAX Smart Home System CDP-1020n contains an SQL injection vulnerability that allows attackers to bypass authentication by injecting arbitrary SQL code through the id parameter in loginstart.asp. Attackers can exploit this by sending a POST request with malicious id values to manipulate database queries and gain unauthorized access.

← Browse all CVEs View on cve.org ↗