Security Advisory

CVE-2022-45724

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-02-13 00:00:00

Last updated 2025-03-24 17:45:05

Assigner mitre

State PUBLISHED

Description

Incorrect Access Control in Comfast router CF-WR6110N V2.3.1 allows a remote attacker on the same network to perform any HTTP request to an unauthenticated page to force the server to generate a SESSION_ID, and using this SESSION_ID an attacker can then perform authenticated requests.

← Browse all CVEs View on cve.org ↗