The DrayTek Vigor 2700 router 2.8.3 allows remote malicious users to execute arbitrary JavaScript code, and modify settings or the DNS cache, via a crafted SSID value that is not properly handled during insertion into the sWlessSurvey value in variables.js.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
draytek vigor_2700_router_firmware 2.8.3 |
||
draytek vigor_2700_router - |