CVE-2021-40856
HIGH EXPLOITED NUCLEIAuerswald COMfortel <2.8G - Auth Bypass
Title source: llmDescription
Auerswald COMfortel 1400 IP and 2600 IP before 2.8G devices allow Authentication Bypass via the /about/../ substring.
Nuclei Templates (1)
Auerswald COMfortel 1400/2600/3600 IP - Authentication Bypass
HIGHby gy741
References (3)
Scores
CVSS v3
7.5
EPSS
0.8810
EPSS Percentile
99.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitation Intel
VulnCheck KEV
2025-06-07
Classification
CWE
CWE-706
Status
published
Affected Products (3)
auerswald/comfortel_3600_ip_firmware
< 2.8f
auerswald/comfortel_2600_ip_firmware
< 2.8f
auerswald/comfortel_1400_ip_firmware
< 2.8f
Timeline
Published
Dec 13, 2021
Tracked Since
Feb 18, 2026