Vulnerabilities > CVE-2020-10824 - Out-of-bounds Write vulnerability in Draytek products

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

draytek

CWE-787

critical

NVD

Published: 2020-03-26

Updated: 2020-06-23

Summary

A stack-based buffer overflow in /cgi-bin/activate.cgi through ticket parameter on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1 allows remote attackers to achieve code execution via a remote HTTP request (issue 2 of 3).

Vulnerable Configurations

Part	Description	Count
OS	Draytek Draytek Vigor300B Firmware - Draytek Vigor300B Firmware 1.3.3 Draytek Vigor300B Firmware 1.4.2.1 Draytek Vigor300B Firmware 1.4.4 Draytek Vigor3900 Firmware - Draytek Vigor3900 Firmware 1.4.4 Draytek Vigor2960 Firmware - Draytek Vigor2960 Firmware 1.3.1 Draytek Vigor2960 Firmware 1.5.1	9
Hardware	Draytek Draytek Vigor300B - Draytek Vigor3900 - Draytek Vigor2960 -	3

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References