{"uuid": "f7417e76-b842-4f6a-90e0-2e31978e2112", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-15511", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116909725459236497", "content": "CVE-2026-15511 (CRITICAL, CVSS 9.3): OS command injection in Comfast CF-WR631AX V3 (fw 2.7.0.0 \u2013 2.7.0.8) enables unauthenticated remote code execution. No patch. Restrict access &amp; disable remote mgmt. https://radar.offseq.com/threat/cve-2026-15511-os-command-injection-in-comfast-cf--f966bd818b8c5835 #OffSeq #CVE #IoTSecurity #Router", "creation_timestamp": "2026-07-13T00:00:41.249424Z"}