Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:3 a.m.9 views

CVE-2023-33778

Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their o...

9.8CVSS7.3AI score0.00599EPSS
Exploits1References1
Circl
Circl
added 2023/06/15 3:17 p.m.11 views

CVE-2023-33778

creationtimestamp| type| source ---|---|--- 2023-06-15 15:17:31+00:00| seen| MISP/3fc4f535-2faf-43c9-b690-2cf2251b598a...

9.8CVSS9.5AI score0.00599EPSS
Exploits1
NVD
NVD
added 2023/06/01 4:15 a.m.30 views

CVE-2023-33778

Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their o...

9.8CVSS9.6AI score0.00599EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/06/01 12:0 a.m.8 views

CVE-2023-33778

Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their o...

9.6AI score0.00599EPSS
Exploits1References1
CVE
CVE
added 2023/06/01 12:0 a.m.98 views

CVE-2023-33778

Summary: CVE-2023-33778 relates to Draytek Vigor devices (Routers, Access Points, Switches, Myvigor) that ship with hardcoded encryption keys. This flaw lets an attacker bind an affected device to their own account and subsequently create WCF and DrayDDNS licenses and synchronize them from the we...

9.8CVSS9.4AI score0.00599EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder