RSS   Vulnerabilities for 'Vigor2925 firmware'   RSS

2019-09-20
 
CVE-2019-16534

CWE-79
 

 
On DrayTek Vigor2925 devices with firmware 3.8.4.3, XSS exists via a crafted WAN name on the General Setup screen. NOTE: this is an end-of-life product. This has been solved in v3.8.8.2 and later release firmware

 
 
CVE-2019-16533

CWE-79
 

 
On DrayTek Vigor2925 devices with firmware 3.8.4.3, Incorrect Access Control exists in loginset.htm, and can be used to trigger XSS. NOTE: this is an end-of-life product. This has been solved in v3.8.8.2 and later release firmware.

 

 >>> Vendor: Draytek 5 Products
Vigor 2700 router
Vigor 2700 router firmware
Ap910c firmware
Vigor2925 firmware
Vigorconnect


Copyright 2024, cxsecurity.com

 

Back to Top