CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-44845

DrayTek Vigor3900 v1.5.1.6 was discovered to contain an authenticated command injection vulnerability via the value parameter in the filter_string function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.059

EPSS Ranking 90.2%

CVSS Severity

CVSS v3 Score 8.8

References

https://github.com/3okfc/IOT-VUL-WP/blob/main/DaryTek/vigor3900_2.md

Products affected by CVE-2024-44845

Draytek » Vigor3900 » Version: N/A

cpe:2.3:h:draytek:vigor3900:-
Draytek » Vigor3900 Firmware » Version: 1.5.1.6

cpe:2.3:o:draytek:vigor3900_firmware:1.5.1.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-44845

Products

Pricing

Contact Us