CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Draytek: >> Vigor2960 Firmware >> 1.3.2 Security Vulnerabilities

CVE-2020-10826

/cgi-bin/activate.cgi on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1 allows remote attackers to achieve command injection via a remote HTTP request in DEBUG mode.

CVSS Score

9.8

EPSS Score

0.615

Published

2020-03-26

CVE-2020-10827

A stack-based buffer overflow in apmd on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1 allows remote attackers to achieve code execution via a remote HTTP request.

CVSS Score

9.8

EPSS Score

0.228

Published

2020-03-26

CVE-2020-10828

A stack-based buffer overflow in cvmd on Draytek Vigor3900, Vigor2960, and Vigor300B devices before 1.5.1 allows remote attackers to achieve code execution via a remote HTTP request.

CVSS Score

9.8

EPSS Score

0.228

Published

2020-03-26

Prev

Page 2

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved