Lucene search
China National Vulnerability DatabaseCNVD-2021-81961HistoryOct 14, 2021 - 12:00 a.m.
Draytek VigorConnect Local File Inclusion Vulnerability (CNVD-2021-81961)
2021-10-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
4
0.014 Low
EPSS
Percentile
86.6%
VigorConnect is the local network management software for DrayTek devices.A local file inclusion vulnerability exists in the file download function of the DownloadFileServlet endpoint of Draytek VigorConnect version 1.6.0-B3. An attacker could exploit this vulnerability to download arbitrary files from the underlying operating system with root privileges.
Related
nessus
nessus
Draytek VigorConnect LFI (CVE-2021-20123)
2021-11-08 00:00:00
cve
cve
CVE-2021-20123
2021-10-13 16:15:07
prion
prion
Remote file inclusion
2021-10-13 16:15:00
nvd
nvd
CVE-2021-20123
2021-10-13 16:15:07
checkpoint_advisories
checkpoint_advisories
Draytek VigorConnect Directory Traversal (CVE-2021-20123)
2021-11-11 00:00:00
nuclei
nuclei
Draytek VigorConnect 1.6.0-B - Local File Inclusion
2022-05-13 09:07:21
cvelist
cvelist
CVE-2021-20123
2021-10-13 15:47:58