On Draytek Vigor3900, Vigor2960, and Vigor 300B devices prior to 1.5.1.1, there are some command-injection vulnerabilities in the mainfunction.cgi file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
draytek vigor300b_firmware |
||
draytek vigor2960_firmware |
||
draytek vigor3900_firmware |