CVE-2025-57293HIGH 8.8EPSS p73.9%

CVE-2025-57293CVE-2025-57293

Description

A command injection vulnerability in COMFAST CF-XR11 (firmware V2.7.2) exists in the multi_pppoe API, processed by the sub_423930 function in /usr/bin/webmgnt. The phy_interface parameter is not sanitized, allowing attackers to inject arbitrary commands via a POST request to /cgi-bin/mbox-config?method=SET&section=multi_pppoe. When the action parameter is set to "one_click_redial", the unsanitized phy_interface is used in a system() call, enabling execution of malicious commands. This can lead to unauthorized access to sensitive files, execution of arbitrary code, or full device compromise.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS1.68% probability of exploitation · percentile 73.9% · 2026-06-19T12:03:05Z
Published2025-09-18
Last modified2025-10-03

Underlying weaknesses· 1

CWE-77

References

  1. https://github.com/ZZ2266/.github.io/blob/main/comfast/multi_pppoe.markdown

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in a Command ('Command Injection')cwe-770%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-9581
CVE
CVE-2026-2534
CVE
CVE-2026-2535
CVE
CVE-2025-9583
CVE
CVE-2026-2824
CVE
CVE-2025-9586
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.