DrayTek Vigor 2960 操作系统命令注入漏洞

The DrayTek Vigor 2960 is a router product developed by DrayTek Corporation. Versions prior to 1.5.1.4 of the DrayTek Vigor 2960 contained an operating system command injection vulnerability. This vulnerability stemmed from issues with OS command injection in the CGI login processing mechanism. I...

CVE-2023-1163

UNSUPPORTED WHEN ASSIGNED A vulnerability has been found in DrayTek Vigor 2960 1.5.1.4/1.5.1.5 and classified as critical. Affected by this vulnerability is the function getSyslogFile of the file mainfunction.cgi of the component Web Management Interface. The manipulation of the argument option...

CVE-2024-12986

A vulnerability, which was classified as critical, has been found in DrayTek Vigor2960 and Vigor300B 1.5.1.3/1.5.1.4. This issue affects some unknown processing of the file /cgi-bin/mainfunction.cgi/apmcfgupptim of the component Web Management Interface. The manipulation of the argument session...

DrayTek Vigor2960和Vigor300B 命令注入漏洞

DrayTek Vigor300B and DrayTek Vigor 2960 are both products of China DrayTek DrayTek.Vigor300B is a load balancing router.DrayTek Vigor 2960 is a Dual WAN broadband router/VPN gateway. A command injection vulnerability exists in the DrayTek Vigor 2960 and Vigor300B versions 1.5.1.3 through 1.5.1.4...

DrayTek Vigor300B和DrayTek Vigor2960 安全漏洞

DrayTek Vigor300B and DrayTek Vigor2960 are both products of China's DrayTek Corporation DrayTek.The Vigor300B is a load balancing router.The DrayTek Vigor2960 is a router... A security vulnerability exists in the DrayTek Vigor300B and DrayTek Vigor2960 version 1.5.1.4, which stems from a session...

PT-2023-32582 · Draytek · Draytek Vigor2960

Name of the Vulnerable Software and Affected Versions: Draytek Vigor2960 versions 1.5.1.4 through 1.5.1.5 Description: The issue allows an authenticated attacker with access to the web management interface to delete arbitrary files via directory traversal. This is achieved through the...

DrayTek Vigor2960 命令注入漏洞

The DrayTek Vigor2960 is a dual WAN broadband router/VPN gateway from China-based DrayTek. A command injection vulnerability exists in the DrayTek Vigor2960 v1.5.1.4, which stems from the presence of a command injection vulnerability via the mainfunction.cgi component...

DrayTek Vigor2960 命令注入漏洞

The DrayTek Vigor2960 is a dual WAN broadband router/VPN gateway from China's DrayTek. A command injection vulnerability exists in the DrayTek Vigor2960 version 1.5.1.4, which stems from a problem with the function sub1225C in the file mainfunction.cgi, which can lead to a command injection...

PT-2023-9804 · Draytek · Draytek Vigor2960

Name of the Vulnerable Software and Affected Versions: DrayTek Vigor 2960 versions 1.5.1.4 through 1.5.1.5 Description: A critical vulnerability has been found in the Web Management Interface of DrayTek Vigor 2960. The issue is related to the function sub 1DF14 of the file...