Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-1163
HistoryMar 03, 2023 - 7:15 a.m.

Path traversal

2023-03-0307:15:00
PRIOn knowledge base
www.prio-n.com
6
draytek vigor
path traversal
web management_interface
remote attack

6.6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.9%

JSON

UNSUPPORTED WHEN ASSIGNED A vulnerability has been found in DrayTek Vigor 2960 1.5.1.4/1.5.1.5 and classified as critical. Affected by this vulnerability is the function getSyslogFile of the file mainfunction.cgi of the component Web Management Interface. The manipulation of the argument option leads to path traversal. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-222259. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

CPENameOperatorVersion
vigor_2960_firmwareeq1.5.1.4

Related

cve 1
cvelist 1
nvd 1
cve
cve
CVE-2023-1163
2023-03-03 07:15:09
cvelist
cvelist
CVE-2023-1163 DrayTek Vigor 2960 Web Management Interface mainfunction.cgi getSyslogFile path traversal
2023-03-03 06:49:59
nvd
nvd
CVE-2023-1163
2023-03-03 07:15:09

6.6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.9%

JSON
Related for PRION:CVE-2023-1163
cve1cvelist1nvd1