AI Score
Confidence
High
EPSS
Percentile
28.1%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
total
DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection vulnerability via the value parameter in the filter_string function.
[
{
"cpes": [
"cpe:2.3:o:draytek:vigor3900_firmware:*:*:*:*:*:*:*:*"
],
"vendor": "draytek",
"product": "vigor3900_firmware",
"versions": [
{
"status": "affected",
"version": "1.5.1.6"
}
],
"defaultStatus": "unknown"
}
]