Vulnerabilities > CVE-2022-47697 - Unspecified vulnerability in Comfast Project Cf-Wr623N Firmware

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

comfast-project

critical

NVD

Published: 2023-01-31

Updated: 2023-08-08

Summary

COMFAST (Shenzhen Sihai Zhonglian Network Technology Co., Ltd) CF-WR623N Router firmware V2.3.0.1 and before is vulnerable to Account takeover. Anyone can reset the password of the admin accounts.

Vulnerable Configurations

Part	Description	Count
OS	Comfast_Project Comfast Project CF Wr623N Firmware *	1
Hardware	Comfast_Project Comfast Project CF Wr623N -	1

References

https://github.com/OlivierLaflamme/cve/blob/main/COMFAST/CF-WR623N/unauth_account_takeover