Authorized RCE Vulnerability in DrayTek Vigor2960 Router
CVE-2024-48074

8HIGH

Key Information:

Vendor: DrayTek
Status: Vigor2960 Firmware
Vendor: CVE Published:; 28 October 2024

What is CVE-2024-48074?

An authorized remote code execution vulnerability has been identified in DrayTek's Vigor2960 router running version 1.4.4. This flaw allows an attacker to inject a malicious command into the 'table' parameter of the 'doPPPoE' function via the cgi-bin/mainfunction.cgi endpoint. Once executed, this command can lead to unauthorized access and control over the system, posing a significant risk to network security. It is crucial for users to apply necessary security patches and updates to mitigate this vulnerability.

References

https://github.com/Giles-one/Vigor2960Crack

https://gist.github.com/Giles-one/6425e97dcd1ec97a722a1e2...

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 28, 2024
Vulnerability Reserved
Oct 8, 2024

CVE-2024-48074 Data

JSON