Incorrect Access Control in COMFAST CF-WR623N Router Firmware V2.3.0.1 and Earlier

Incorrect Access Control in COMFAST CF-WR623N Router Firmware V2.3.0.1 and Earlier

CVE-2022-47700 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

COMFAST (Shenzhen Sihai Zhonglian Network Technology Co., Ltd) CF-WR623N Router firmware V2.3.0.1 and before is vulnerable to Incorrect Access Control. Improper authentication allows requests to be made to back-end scripts without a valid session or authentication.

Learn more about our Network Penetration Testing.