CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46595
https://notcve.org/view.php?id=CVE-2024-46595
18 Sep 2024 — Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the saveitem parameter at lan2lan.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. • https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#7f26d2119de54d5fbc25a8d3ebe2b16c •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46596
https://notcve.org/view.php?id=CVE-2024-46596
18 Sep 2024 — Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sAct parameter at v2x00.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. • https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#d049794ac4804e48968cb77589d5ec45 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46597
https://notcve.org/view.php?id=CVE-2024-46597
18 Sep 2024 — Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the sPubKey parameter at dialin.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. • https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#11467dddc16f460db85a5e8d3a6665fb •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-46598
https://notcve.org/view.php?id=CVE-2024-46598
18 Sep 2024 — Draytek Vigor 3910 v4.3.2.6 was discovered to contain a buffer overflow in the iprofileidx parameter at dialin.cgi. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted input. • https://ink-desk-28f.notion.site/Draytek-vigor-3910-Analysis-Report-b3b23e150c4f4bab822c3c47fd7b9de9#0875f261ad5c4e1ba59448d49a261a99 •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44844
https://notcve.org/view.php?id=CVE-2024-44844
06 Sep 2024 — DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection vulnerability via the name parameter in the run_command function. • https://github.com/3okfc/IOT-VUL-WP/blob/main/DaryTek/vigor3900_1.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-44845
https://notcve.org/view.php?id=CVE-2024-44845
06 Sep 2024 — DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection vulnerability via the value parameter in the filter_string function. • https://github.com/3okfc/IOT-VUL-WP/blob/main/DaryTek/vigor3900_2.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 8.0EPSS: 0%CPEs: 3EXPL: 0CVE-2024-43027
https://notcve.org/view.php?id=CVE-2024-43027
21 Aug 2024 — DrayTek Vigor 3900 before v1.5.1.5_Beta, DrayTek Vigor 2960 before v1.5.1.5_Beta and DrayTek Vigor 300B before v1.5.1.5_Beta were discovered to contain a command injection vulnerability via the action parameter at cgi-bin/mainfunction.cgi. • https://github.com/N1nEmAn/wp/blob/main/V3900.md • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-23721
https://notcve.org/view.php?id=CVE-2024-23721
20 Mar 2024 — A Directory Traversal issue was discovered in process_post on Draytek Vigor3910 4.3.2.5 devices. When sending a certain POST request, it calls the function and exports information. Se descubrió un problema de Directory Traversal en process_post en dispositivos Draytek Vigor3910 4.3.2.5. Al enviar una determinada solicitud POST, llama a la función y exporta información. • https://draytek.com • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2023-47254
https://notcve.org/view.php?id=CVE-2023-47254
09 Dec 2023 — An OS Command Injection in the CLI interface on DrayTek Vigor167 version 5.2.2, allows remote attackers to execute arbitrary system commands and escalate privileges via any account created within the web interface. Una inyección de comando del sistema operativo en la interfaz CLI en DrayTek Vigor167 versión 5.2.2 permite a atacantes remotos ejecutar comandos arbitrarios del sistema y escalar privilegios a través de cualquier cuenta creada dentro de la interfaz web. • https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2023-023.txt • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.5EPSS: 0%CPEs: 3EXPL: 1CVE-2023-6265 – DrayTek Vigor2960 mainfunction.cgi dumpSyslog 'option' directory traversal
https://notcve.org/view.php?id=CVE-2023-6265
22 Nov 2023 — Draytek Vigor2960 v1.5.1.4 and v1.5.1.5 are vulnerable to directory traversal via the mainfunction.cgi dumpSyslog 'option' parameter allowing an authenticated attacker with access to the web management interface to delete arbitrary files. Vigor2960 is no longer supported. Draytek Vigor2960 v1.5.1.4 y v1.5.1.5 son vulnerables a directory traversal a través del parámetro 'option' mainfunction.cgi dumpSyslog que permite a un atacante autenticado con acceso a la interfaz de administración web eliminar archivos ... • https://github.com/xxy1126/Vuln/blob/main/Draytek/4.md • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •