Vulnerability CVE-2024-41592
Published: 2024-10-03

Description:
DrayTek Vigor3910 devices through 4.3.2.6 have a stack-based overflow when processing query string parameters because GetCGI mishandles extraneous ampersand characters and long key-value pairs.

 References:
https://www.forescout.com/resources/draytek14-vulnerabilities
https://www.forescout.com/resources/draybreak-draytek-research/
Copyright 2026, cxsecurity.com

 

Back to Top